Overview

overview

10

Static

static

10

JaffaCakes...4c.exe

windows7-x64

10

JaffaCakes...4c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_51e4856e80cf0690987cb95887169488c1533fb381795a0013e56d89aa91134c

  • Size

    658KB

  • Sample

    241222-nv3dfsxkel

  • MD5

    dd2415171ce9efc6649dc685b522911e

  • SHA1

    705c73ece90ac6546148097704a4c69dbaa49432

  • SHA256

    51e4856e80cf0690987cb95887169488c1533fb381795a0013e56d89aa91134c

  • SHA512

    6ba2b38d3c4f00f795f799b90f3891be885a50f635d3c09814759722184d732eda40fb14b8cae453d4b1f296dac9f0be52db6347092d651b9817aefc7f289c01

  • SSDEEP

    12288:uIQqoPBWMROjD5EG++L2SColQf0VkXRDuGRl9eJm5Qk8iCVwV0DujIDL3/6GaCOG:uIQqoPBVROjD5EG++2gyakBD//9eJ+Cb

Score
10/10
xmrigdiscoveryminerpersistence

Malware Config

Targets

    • Target

      JaffaCakes118_51e4856e80cf0690987cb95887169488c1533fb381795a0013e56d89aa91134c

    • Size

      658KB

    • MD5

      dd2415171ce9efc6649dc685b522911e

    • SHA1

      705c73ece90ac6546148097704a4c69dbaa49432

    • SHA256

      51e4856e80cf0690987cb95887169488c1533fb381795a0013e56d89aa91134c

    • SHA512

      6ba2b38d3c4f00f795f799b90f3891be885a50f635d3c09814759722184d732eda40fb14b8cae453d4b1f296dac9f0be52db6347092d651b9817aefc7f289c01

    • SSDEEP

      12288:uIQqoPBWMROjD5EG++L2SColQf0VkXRDuGRl9eJm5Qk8iCVwV0DujIDL3/6GaCOG:uIQqoPBVROjD5EG++2gyakBD//9eJ+Cb

    Score
    10/10
    xmrigdiscoveryminerpersistence

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Cryptocurrency Miner

      Makes network request to known mining pool URL.

      miner

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks