General

  • Target

    asd.zip

  • Size

    3MB

  • Sample

    211203-vln8sshagq

  • MD5

    97c869f246c2828be42d007003ddf77e

  • SHA1

    7963231154c1fd76a38f8f0ea5e965ad04ac12da

  • SHA256

    fd93b2ad4fe7d789cbd26c84f657e8eea418cc3fc8631ad52b8a197d06387c87

  • SHA512

    cae307c832b75a49704428f5285ff95efcdf74c01193920c94716fc21df0f60b328ef47208240263749e45095c36f795794eb8e1753c04d349fdfa87fd985614

Score
10/10

Malware Config

Targets

    • Target

      msvcr710x64.sys

    • Size

      14KB

    • MD5

      0c0195c48b6b8582fa6f6373032118da

    • SHA1

      d25340ae8e92a6d29f599fef426a2bc1b5217299

    • SHA256

      11bd2c9f9e2397c9a16e0990e4ed2cf0679498fe0fd418a3dfdac60b5c160ee5

    • SHA512

      ab28e99659f219fec553155a0810de90f0c5b07dc9b66bda86d7686499fb0ec5fddeb7cd7a3c5b77dccb5e865f2715c2d81f4d40df4431c92ac7860c7e01720d

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner Payload

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Target

      sqlservr.exe

    • Size

      3MB

    • MD5

      325d88ea2ee59fc0faec0cd4e6db494e

    • SHA1

      63f2c5cbabd05e857c983741f4b9d71f7fbc6f69

    • SHA256

      eef7b9db43f331b41bfdc87fa0517fbd76981a9b9574fe2ee45bcc1ca390e616

    • SHA512

      6fdc79184bb209c1ec7e4a720fa6aed6a50a6dae2a6773d2c30c71be0eadbf2fb5dad6f906815a977a4081b239a06c4d087bcbb9b01a7aa8ffd8e4f0bb659cc2

    Score
    1/10

MITRE ATT&CK Matrix

Tasks