General
-
Target
SecuriteInfo.com.Trojan.PackedNET.721.17987.1681
-
Size
2.1MB
-
Sample
210716-dgsewadxna
-
MD5
73ab4524d40fd3f991dd0b12646772e1
-
SHA1
f1391279800f539282edaf04f636642d6569a7d8
-
SHA256
d765cca6a80ac3e18801b578cb3eacae5a35c4c45b365e5d02d2c17a48fb23d6
-
SHA512
4cb98b37d7ad25bc316d2f5fa64a3c59aa2f71365d0bcab471318646041558317bf85a5b2b0cddf1a6d52a4c268a519b37fa3560ae5d9d057cbc21501ec5226b
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.PackedNET.721.17987.1681.exe
Resource
win7v20210410
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Trojan.PackedNET.721.17987.1681
-
Size
2.1MB
-
MD5
73ab4524d40fd3f991dd0b12646772e1
-
SHA1
f1391279800f539282edaf04f636642d6569a7d8
-
SHA256
d765cca6a80ac3e18801b578cb3eacae5a35c4c45b365e5d02d2c17a48fb23d6
-
SHA512
4cb98b37d7ad25bc316d2f5fa64a3c59aa2f71365d0bcab471318646041558317bf85a5b2b0cddf1a6d52a4c268a519b37fa3560ae5d9d057cbc21501ec5226b
-
XMRig Miner Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of SetThreadContext
-