General

  • Target

    0149a98c6f89c65070f99ec4d75b363c_JaffaCakes118

  • Size

    2.3MB

  • MD5

    0149a98c6f89c65070f99ec4d75b363c

  • SHA1

    9c027da19952c613afbc9d7291d8b0b5079507a9

  • SHA256

    ccd793e1216ca91ca82cd7eefa86b31a5049861be33c09d3aa9f89ce0252ce34

  • SHA512

    e23b0d280eb3398ababd34ad753a7563734112ecc671d58fb70f38906660e263fcdde0b8197b70a3857214221d7857f418ff51b2ca50b887570ee40c3d3a94db

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1Vr5s1PTWsuT9JpWaH:NABQ

Score
10/10

Malware Config

Signatures

  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 0149a98c6f89c65070f99ec4d75b363c_JaffaCakes118
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections