General
-
Target
ddcfbba52f543dde3ebc9f9f8ec0f56671b19a00b492b1bdceb4524d5253552f
-
Size
22.0MB
-
Sample
220516-q5587sfehq
-
MD5
e4befcc350184261d26c46be9a9dfd63
-
SHA1
68a505f4faac140551e8b79337b28e002a1d1ccc
-
SHA256
ddcfbba52f543dde3ebc9f9f8ec0f56671b19a00b492b1bdceb4524d5253552f
-
SHA512
b8e23b4f89c962992fdb13852505a12665f277bfa2382122422fac66652934dcf54b7426880639903320acd7266246e059378defc3619d86cb7e151b10e3c3bd
Behavioral task
behavioral1
Sample
ddcfbba52f543dde3ebc9f9f8ec0f56671b19a00b492b1bdceb4524d5253552f.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
ddcfbba52f543dde3ebc9f9f8ec0f56671b19a00b492b1bdceb4524d5253552f.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
ddcfbba52f543dde3ebc9f9f8ec0f56671b19a00b492b1bdceb4524d5253552f
-
Size
22.0MB
-
MD5
e4befcc350184261d26c46be9a9dfd63
-
SHA1
68a505f4faac140551e8b79337b28e002a1d1ccc
-
SHA256
ddcfbba52f543dde3ebc9f9f8ec0f56671b19a00b492b1bdceb4524d5253552f
-
SHA512
b8e23b4f89c962992fdb13852505a12665f277bfa2382122422fac66652934dcf54b7426880639903320acd7266246e059378defc3619d86cb7e151b10e3c3bd
Score10/10-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-