General
-
Target
5.exe
-
Size
579KB
-
Sample
210226-g2av6w53xa
-
MD5
4f62b39ba4defb592856eb96f4dae6a5
-
SHA1
a660f418c6ce839376df337ccf8636d03a3e6072
-
SHA256
9ee039d905606d5d35b763872c16665fcb7781f988ae21df88dbac23f2dc6056
-
SHA512
4bc7ea43cac07aa56ab47606605908f82b31f7a6d48e378429ed955159bc41bf9987e2fc8f3bee5259fa321bfd93515947846ded047c86bc95baec2cbd8cc555
Static task
static1
Behavioral task
behavioral1
Sample
5.exe
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Malware Config
Targets
-
-
Target
5.exe
-
Size
579KB
-
MD5
4f62b39ba4defb592856eb96f4dae6a5
-
SHA1
a660f418c6ce839376df337ccf8636d03a3e6072
-
SHA256
9ee039d905606d5d35b763872c16665fcb7781f988ae21df88dbac23f2dc6056
-
SHA512
4bc7ea43cac07aa56ab47606605908f82b31f7a6d48e378429ed955159bc41bf9987e2fc8f3bee5259fa321bfd93515947846ded047c86bc95baec2cbd8cc555
-
XMRig Miner Payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Modifies file permissions
-
Legitimate hosting services abused for malware hosting/C2
-