General
-
Target
6a6b84b7404876b8d74799c50ac3221749a92cdced1b7dcbad5ff988a80566b5
-
Size
23.9MB
-
Sample
220516-q61ecafgfk
-
MD5
07b78e5810783ca9201cd7b907da00c9
-
SHA1
7da421b21782898ba48a7d82ddb0e62b1c2932da
-
SHA256
6a6b84b7404876b8d74799c50ac3221749a92cdced1b7dcbad5ff988a80566b5
-
SHA512
d4b90aec090b9b4bfd54674ba4d3fe319d695db2f441286d2053fe02c161ce99da92d95ddd0f2055f3b86889043475d8751a4bcfe4193bba1d713adb07e4b100
Behavioral task
behavioral1
Sample
6a6b84b7404876b8d74799c50ac3221749a92cdced1b7dcbad5ff988a80566b5.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
6a6b84b7404876b8d74799c50ac3221749a92cdced1b7dcbad5ff988a80566b5.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
6a6b84b7404876b8d74799c50ac3221749a92cdced1b7dcbad5ff988a80566b5
-
Size
23.9MB
-
MD5
07b78e5810783ca9201cd7b907da00c9
-
SHA1
7da421b21782898ba48a7d82ddb0e62b1c2932da
-
SHA256
6a6b84b7404876b8d74799c50ac3221749a92cdced1b7dcbad5ff988a80566b5
-
SHA512
d4b90aec090b9b4bfd54674ba4d3fe319d695db2f441286d2053fe02c161ce99da92d95ddd0f2055f3b86889043475d8751a4bcfe4193bba1d713adb07e4b100
Score10/10-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-