Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    18/05/2024, 08:24

General

  • Target

    53d44678dbed10bccee69a0a9b4c043a_JaffaCakes118.exe

  • Size

    2.8MB

  • MD5

    53d44678dbed10bccee69a0a9b4c043a

  • SHA1

    a65fe241b238748aafe058c8ac21ce47ab3e4acd

  • SHA256

    155de37e521dc968681f14f5fd3a4479febeb6e5f31f13f03031eb2f8d0c2ebd

  • SHA512

    6b2004726d3b4edc1c128bee9a9f4ea24567eafdc2acae8705abf637b09444e245b54574f5e4b13edfed9f834ddc979b4510b841427a4c7ea9684f28a4e05e38

  • SSDEEP

    49152:JFwvxKcXLOmCwT1UyLpKjRXrg6tTTE3grAEXoPXLHI+JmEJFG2RKqQCK3bVjMHxk:JFwZnWKrmVrQgrAAoPXLHIE/g2RKqG3v

Score
10/10

Malware Config

Signatures

  • xmrig

    XMRig is a high performance, open source, cross platform CPU/GPU miner.

  • XMRig Miner payload 1 IoCs
  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Processes

  • C:\Users\Admin\AppData\Local\Temp\53d44678dbed10bccee69a0a9b4c043a_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\53d44678dbed10bccee69a0a9b4c043a_JaffaCakes118.exe"
    1⤵
      PID:2964

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • memory/2964-0-0x000000013F910000-0x0000000140201000-memory.dmp

            Filesize

            8.9MB

          • memory/2964-2-0x000000013F910000-0x0000000140201000-memory.dmp

            Filesize

            8.9MB