General
-
Target
6c1dcae43e11d5e97a8cffe6a596c11a_JaffaCakes118
-
Size
2.2MB
-
Sample
240523-yym32sef3z
-
MD5
6c1dcae43e11d5e97a8cffe6a596c11a
-
SHA1
50932e25d66e2b863b4a0a558b133840cf6050c7
-
SHA256
ae03bf92222dcd00dec20f5f53ac00a7daba46100f518cf8a986246c2f4265de
-
SHA512
360fe6b8a658c0bfb18f27cc2940c0006d300af7ec12cc5a7cdddb825971f5eeb851018c328ccb3ceefc2e89b1620ea46573df610b7f890ec49575725ac2bcff
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1Vr5s1PTWsuT9S:NAB9
Behavioral task
behavioral1
Sample
6c1dcae43e11d5e97a8cffe6a596c11a_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
6c1dcae43e11d5e97a8cffe6a596c11a_JaffaCakes118
-
Size
2.2MB
-
MD5
6c1dcae43e11d5e97a8cffe6a596c11a
-
SHA1
50932e25d66e2b863b4a0a558b133840cf6050c7
-
SHA256
ae03bf92222dcd00dec20f5f53ac00a7daba46100f518cf8a986246c2f4265de
-
SHA512
360fe6b8a658c0bfb18f27cc2940c0006d300af7ec12cc5a7cdddb825971f5eeb851018c328ccb3ceefc2e89b1620ea46573df610b7f890ec49575725ac2bcff
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1Vr5s1PTWsuT9S:NAB9
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-