General
-
Target
67028aabe2cfc93bb2bd427180e69608028b0dc1643cad2b09b92e710feb826c
-
Size
12.2MB
-
Sample
210516-rgm2edbd1n
-
MD5
c62316dbc00c3d7f84e4d54beea3682a
-
SHA1
f806b1f9dd693dcfa82de9aaf6dc329e0db0b89c
-
SHA256
67028aabe2cfc93bb2bd427180e69608028b0dc1643cad2b09b92e710feb826c
-
SHA512
938cbe781cd4f98c197b546c21f73840f3b23cfe7ca890e340f84f03cce46993506d180a8977dd4e02aa7d2ab8890d135151c1450b27f2504a5840a041121cab
Static task
static1
Behavioral task
behavioral1
Sample
67028aabe2cfc93bb2bd427180e69608028b0dc1643cad2b09b92e710feb826c.exe
Resource
win7v20210410
Malware Config
Targets
-
-
Target
67028aabe2cfc93bb2bd427180e69608028b0dc1643cad2b09b92e710feb826c
-
Size
12.2MB
-
MD5
c62316dbc00c3d7f84e4d54beea3682a
-
SHA1
f806b1f9dd693dcfa82de9aaf6dc329e0db0b89c
-
SHA256
67028aabe2cfc93bb2bd427180e69608028b0dc1643cad2b09b92e710feb826c
-
SHA512
938cbe781cd4f98c197b546c21f73840f3b23cfe7ca890e340f84f03cce46993506d180a8977dd4e02aa7d2ab8890d135151c1450b27f2504a5840a041121cab
-
XMRig Miner Payload
-
Creates new service(s)
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Sets service image path in registry
-
Deletes itself
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-