Overview

overview

10

Static

static

10

JaffaCakes...1f.exe

windows7-x64

10

JaffaCakes...1f.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24-12-2024 23:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    JaffaCakes118_a43e5c9eb1a77aa75cd01f4bda19c1ddf5c615045c7055885c79ddc3ca6ff41f.exe

  • Size

    6.0MB

  • MD5

    afc6563aa548929f27d63accea53d4cf

  • SHA1

    f8c20cec6b1a54268225bdbb7dc309685de27206

  • SHA256

    a43e5c9eb1a77aa75cd01f4bda19c1ddf5c615045c7055885c79ddc3ca6ff41f

  • SHA512

    905837f4cfd9fb8c43a66d5b26de3925ad5681b8137539e62916dfeee5db5caaf997ecadc4c4fe2f6a4c3f23e36e14c66b69e73f52a9b70f05fec8e1382d55fb

  • SSDEEP

    98304:EniLf9FdfE0pZB156utgpPFotBER/mQ32lUH:eOl56utgpPF8u/7H

Score
10/10
xmrigminerupx

Malware Config

Signatures

  • Xmrig family
    xmrig
  • xmrig

    XMRig is a high performance, open source, cross platform CPU/GPU miner.

    minerxmrig
  • XMRig Miner payload 2 IoCs
    miner
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_a43e5c9eb1a77aa75cd01f4bda19c1ddf5c615045c7055885c79ddc3ca6ff41f.exe
    "C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_a43e5c9eb1a77aa75cd01f4bda19c1ddf5c615045c7055885c79ddc3ca6ff41f.exe"
    1⤵
      PID:2864

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2864-0-0x00007FF6DF490000-0x00007FF6DF7E4000-memory.dmp

      Filesize

      3.3MB

      Download

    • memory/2864-1-0x00007FF6DF490000-0x00007FF6DF7E4000-memory.dmp

      Filesize

      3.3MB

      Download