General

  • Target

    40387bebfe97eea9c90425caf5519019dfc0e7425bb238246ec9f7bb5d621293

  • Size

    5.3MB

  • Sample

    211014-gwkfpsgbfn

  • MD5

    f8d8071d3e0163eb4e816ec49d0b2e8e

  • SHA1

    a71da7648e0ee019d1594b583df94f4c6b7fae6c

  • SHA256

    40387bebfe97eea9c90425caf5519019dfc0e7425bb238246ec9f7bb5d621293

  • SHA512

    23dd39d2d4906779a44db6aa112c0a7317004664753facfe19233bb742f84ae8c039c0dbe26d85f16a46dd2cd1e97cc1b594dfa23f7cf3deb0dac5eeed10dabf

Score
10/10

Malware Config

Targets

    • Target

      40387bebfe97eea9c90425caf5519019dfc0e7425bb238246ec9f7bb5d621293

    • Size

      5.3MB

    • MD5

      f8d8071d3e0163eb4e816ec49d0b2e8e

    • SHA1

      a71da7648e0ee019d1594b583df94f4c6b7fae6c

    • SHA256

      40387bebfe97eea9c90425caf5519019dfc0e7425bb238246ec9f7bb5d621293

    • SHA512

      23dd39d2d4906779a44db6aa112c0a7317004664753facfe19233bb742f84ae8c039c0dbe26d85f16a46dd2cd1e97cc1b594dfa23f7cf3deb0dac5eeed10dabf

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner Payload

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Tasks