General
-
Target
b3a55f10_by_Libranalysis
-
Size
12.8MB
-
Sample
210505-7tvlrw6kfn
-
MD5
b3a55f10d9e7de1f5661d21d183928b7
-
SHA1
5d615e30b34cb04de59bb20b0731307d06b8d2a7
-
SHA256
edb0f17860280cf20be424eda4e6eff692b2e5e86f38353321b86a2290a208be
-
SHA512
c78b800f68f21954078caf34db6d588737871401841633f029940850076e5f7a4c122f12d629d27bd35fe76f7b7e2ce37a935030879fa7eefc8233bea0ae9bf2
Behavioral task
behavioral1
Sample
b3a55f10_by_Libranalysis.exe
Resource
win7v20210408
Malware Config
Targets
-
-
Target
b3a55f10_by_Libranalysis
-
Size
12.8MB
-
MD5
b3a55f10d9e7de1f5661d21d183928b7
-
SHA1
5d615e30b34cb04de59bb20b0731307d06b8d2a7
-
SHA256
edb0f17860280cf20be424eda4e6eff692b2e5e86f38353321b86a2290a208be
-
SHA512
c78b800f68f21954078caf34db6d588737871401841633f029940850076e5f7a4c122f12d629d27bd35fe76f7b7e2ce37a935030879fa7eefc8233bea0ae9bf2
-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Drops file in System32 directory
-