General

  • Target

    MinerFull.exe

  • Size

    4.0MB

  • Sample

    220416-gjy4bsffa6

  • MD5

    5c7bc4cc56f6e6acb801210bc6eda798

  • SHA1

    541b6f50091fdc17c2bc8d596c0e202b854fb991

  • SHA256

    48f66e13c00038bb2ec12a58bd34cb79f2cf616230c25224c68b81d6c3d7ebf9

  • SHA512

    66558bf8679c264c507a1fb8da2fd81347b339d3786487895f902330d63bf9b44be5a136061b0848801b768fea3e525b934d1b04c2cef959cc878b421c6cbd5d

Malware Config

Targets

    • Target

      MinerFull.exe

    • Size

      4.0MB

    • MD5

      5c7bc4cc56f6e6acb801210bc6eda798

    • SHA1

      541b6f50091fdc17c2bc8d596c0e202b854fb991

    • SHA256

      48f66e13c00038bb2ec12a58bd34cb79f2cf616230c25224c68b81d6c3d7ebf9

    • SHA512

      66558bf8679c264c507a1fb8da2fd81347b339d3786487895f902330d63bf9b44be5a136061b0848801b768fea3e525b934d1b04c2cef959cc878b421c6cbd5d

    • LoaderBot

      LoaderBot is a loader written in .NET downloading and executing miners.

    • LoaderBot executable

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.