General
-
Target
575c0169527e201cd6049c6a93158a34e1bbdbef0fdbed3eca4bcaa095372a9c
-
Size
9.2MB
-
Sample
220516-q64f1afhan
-
MD5
06366862b8fd0eed5b06ca149e53ed93
-
SHA1
7312bc8a59526b5ead4498c3114d826cc46ae368
-
SHA256
575c0169527e201cd6049c6a93158a34e1bbdbef0fdbed3eca4bcaa095372a9c
-
SHA512
aa096eab886efa3520a4b55b990862f5e17dd4406b1a4a71dfaa6ee48bfed87c44c895e6d8d0440e639783c99e44b15e46ab85edd7921e15e0935e54a5bcc532
Behavioral task
behavioral1
Sample
575c0169527e201cd6049c6a93158a34e1bbdbef0fdbed3eca4bcaa095372a9c.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
575c0169527e201cd6049c6a93158a34e1bbdbef0fdbed3eca4bcaa095372a9c.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
575c0169527e201cd6049c6a93158a34e1bbdbef0fdbed3eca4bcaa095372a9c
-
Size
9.2MB
-
MD5
06366862b8fd0eed5b06ca149e53ed93
-
SHA1
7312bc8a59526b5ead4498c3114d826cc46ae368
-
SHA256
575c0169527e201cd6049c6a93158a34e1bbdbef0fdbed3eca4bcaa095372a9c
-
SHA512
aa096eab886efa3520a4b55b990862f5e17dd4406b1a4a71dfaa6ee48bfed87c44c895e6d8d0440e639783c99e44b15e46ab85edd7921e15e0935e54a5bcc532
Score10/10-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-