General

  • Target

    c3c750acd87fe108299044eafbf6954c_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240826-y8gc9avhmn

  • MD5

    c3c750acd87fe108299044eafbf6954c

  • SHA1

    e4932f37af79722b8cf9e79316d9b4bb518c53ca

  • SHA256

    f7cbe3aef850dffecbac6344f2b49d0a5d23aa9b84421a6f2144c1777f0cf00a

  • SHA512

    ce02eb0145cafcf37fd69779dc791098c3696d168efc7f463bb3b8f96ce9fea6d5d10a6e272a4b3d31dd8423b4ea17b349b88fe3d82adc758c5c34dee87e1323

  • SSDEEP

    24576:e/f9jsnPBnehRbBD3c6G9GEbyuoM0mh7wKsYSlAjiQgM8CQ2ZPv65q4:e9AtePNDGClmh7tyciQggPv65q4

Malware Config

Targets

    • Target

      c3c750acd87fe108299044eafbf6954c_JaffaCakes118

    • Size

      1.1MB

    • MD5

      c3c750acd87fe108299044eafbf6954c

    • SHA1

      e4932f37af79722b8cf9e79316d9b4bb518c53ca

    • SHA256

      f7cbe3aef850dffecbac6344f2b49d0a5d23aa9b84421a6f2144c1777f0cf00a

    • SHA512

      ce02eb0145cafcf37fd69779dc791098c3696d168efc7f463bb3b8f96ce9fea6d5d10a6e272a4b3d31dd8423b4ea17b349b88fe3d82adc758c5c34dee87e1323

    • SSDEEP

      24576:e/f9jsnPBnehRbBD3c6G9GEbyuoM0mh7wKsYSlAjiQgM8CQ2ZPv65q4:e9AtePNDGClmh7tyciQggPv65q4

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Writes DNS configuration

      Writes data to DNS resolver config file.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Modifies init.d

      Adds/modifies system service, likely for persistence.

MITRE ATT&CK Enterprise v15

Tasks