Analysis

  • max time kernel
    93s
  • max time network
    96s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240611-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13-06-2024 09:01

General

  • Target

    a4c0620ae0eac8861a28feb80a1b6ec6_JaffaCakes118.exe

  • Size

    450KB

  • MD5

    a4c0620ae0eac8861a28feb80a1b6ec6

  • SHA1

    a579e351907dcf29cdf4c60942dea03343c0be42

  • SHA256

    eadbcdd3808a0c8791ef7013d415ed2799b33f06991a3229218b541105afe8c8

  • SHA512

    9ee61be5f7444c4fd677f3a3704f3a4d35e1994fbbf81fe82aafd51df193607824adb527cd11d692d0179c6913c57fee413d4fe0ad315dc0d432f59d34b97840

  • SSDEEP

    12288:sQpTdVlp18gl1XIvG0sXRKwivZShcSTGJBcYRUIR:selp+grXfXImzTGI6

Score
10/10

Malware Config

Signatures

  • xmrig

    XMRig is a high performance, open source, cross platform CPU/GPU miner.

  • XMRig Miner payload 1 IoCs
  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Processes

  • C:\Users\Admin\AppData\Local\Temp\a4c0620ae0eac8861a28feb80a1b6ec6_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\a4c0620ae0eac8861a28feb80a1b6ec6_JaffaCakes118.exe"
    1⤵
      PID:916

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/916-0-0x00007FF63B230000-0x00007FF63B3A0000-memory.dmp
      Filesize

      1.4MB

    • memory/916-2-0x00007FF63B230000-0x00007FF63B3A0000-memory.dmp
      Filesize

      1.4MB