Overview

overview

10

Static

static

10

users/c

ubuntu-20.04-amd64

1

users/h32

ubuntu-20.04-amd64

users/h64

ubuntu-20.04-amd64

1

users/md32

ubuntu-18.04-amd64

users/run

ubuntu-18.04-amd64

3

users/run

debian-9-armhf

1

users/run

debian-9-mips

users/run

debian-9-mipsel

users/stak...4.so.2

ubuntu-20.04-amd64

1

users/stak/libc.so.6

ubuntu-20.04-amd64

1

users/stak...o.so.1

ubuntu-20.04-amd64

1

users/stak/libdl.so.2

ubuntu-20.04-amd64

1

users/stak...i.so.6

ubuntu-20.04-amd64

1

users/stak....so.20

ubuntu-20.04-amd64

1

users/stak....so.10

ubuntu-20.04-amd64

1

users/stak....so.30

ubuntu-20.04-amd64

1

users/stak...r.so.0

ubuntu-20.04-amd64

1

users/stak...d.so.4

ubuntu-20.04-amd64

1

users/stak....so.11

ubuntu-20.04-amd64

1

users/stak/libm.so.6

ubuntu-18.04-amd64

1

users/stak....so.10

ubuntu-20.04-amd64

1

users/stak....so.12

ubuntu-20.04-amd64

1

users/stak...e.so.6

ubuntu-20.04-amd64

1

users/stak...t.so.0

ubuntu-20.04-amd64

1

users/stak...d.so.0

ubuntu-20.04-amd64

1

users/stak/librt.so.1

ubuntu-20.04-amd64

1

users/stak...l.so.1

ubuntu-18.04-amd64

1

users/stak...1.so.6

ubuntu-20.04-amd64

1

users/stak/libz.so.1

ubuntu-20.04-amd64

1

users/stak/xmrig

ubuntu-20.04-amd64

1

users/upd

ubuntu-18.04-amd64

1

users/upd

debian-9-armhf

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5c51435b9c57773a488831a42d5dfe74_JaffaCakes118

  • Size

    5.5MB

  • MD5

    5c51435b9c57773a488831a42d5dfe74

  • SHA1

    3dca916a703fea8bfc88a75ed98bd034e2262b62

  • SHA256

    e4369c075a1af14a67ee305f622d2cc699ffb927a11ec5bef46764919a58af6a

  • SHA512

    601ef627b6b1935009a77e311c99e54ef24e128369651c9213f0fbe87238c2672f4de810dad9cc337cd837a882c5b46ad0cde8f18d6a09ec2e09e140f4e27766

  • SSDEEP

    98304:X1AtdYU9bSLGAGq1XEYu+VvZOwvN7D66/REMKeAJn7hnLRxb+D/JslUxPl6E/Bx:Gt1bSSAHA+VvZHrE3eALnXb+D/lrJx

Score
10/10
minerkaitenxmrig

Malware Config

Signatures

  • Detects Kaiten/Tsunami Payload 1 IoCs
  • Detects Kaiten/Tsunami payload 1 IoCs
  • Kaiten family
    kaiten
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig

Files

  • 5c51435b9c57773a488831a42d5dfe74_JaffaCakes118
    .gz
  • sample
    .tar
  • users/a
  • users/c
    .elf linux x64
  • users/cron.d
  • users/dir.dir
  • users/h32
    .elf linux x86
  • users/h64
    .elf linux x64
  • users/md32
    .elf linux x86
  • users/run
    .sh linux
  • users/stak/ld-linux-x86-64.so.2
    .elf linux x64
  • users/stak/libc.so.6
    .elf linux x64
  • users/stak/libcrypto.so.1.1
    .elf linux x64
  • users/stak/libdl.so.2
    .elf linux x64
  • users/stak/libffi.so.6
    .elf linux x64
  • users/stak/libgcrypt.so.20
    .elf linux x64
  • users/stak/libgmp.so.10
    .elf linux x64
  • users/stak/libgnutls.so.30
    .elf linux x64
  • users/stak/libgpg-error.so.0
    .elf linux x64
  • users/stak/libhogweed.so.4
    .elf linux x64
  • users/stak/libidn.so.11
    .elf linux x64
  • users/stak/libm.so.6
    .elf linux x64
  • users/stak/libmicrohttpd.so.10
    .elf linux x64
  • users/stak/libmicrohttpd.so.12
    .elf linux x64
  • users/stak/libnettle.so.6
    .elf linux x64
  • users/stak/libp11-kit.so.0
    .elf linux x64
  • users/stak/libpthread.so.0
    .elf linux x64
  • users/stak/librt.so.1
    .elf linux x64
  • users/stak/libssl.so.1.1
    .elf linux x64
  • users/stak/libtasn1.so.6
    .elf linux x64
  • users/stak/libz.so.1
    .elf linux x64
  • users/stak/xmrig
    .elf linux x64
  • users/upd
    .sh linux
  • users/x