General
-
Target
46b8669e9461a618d8d4a2d9a9c25ecf7784ebdfe9d8ae3ea916616d4a142187
-
Size
19.9MB
-
Sample
220516-q69b9adbh4
-
MD5
008afbc4a16dde427e27783f9f770661
-
SHA1
d5fd149e06e316052076fa188f153e1fdd5c349a
-
SHA256
46b8669e9461a618d8d4a2d9a9c25ecf7784ebdfe9d8ae3ea916616d4a142187
-
SHA512
7c8c6e76251e09d1393ed820de5afc48f903c015125d537f9ef7d3e97c567fb7ec688e3edeb03acf6ca405fd44db072c9fd01a2f15d7d55db04f9f21768f0351
Behavioral task
behavioral1
Sample
46b8669e9461a618d8d4a2d9a9c25ecf7784ebdfe9d8ae3ea916616d4a142187.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
46b8669e9461a618d8d4a2d9a9c25ecf7784ebdfe9d8ae3ea916616d4a142187.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
46b8669e9461a618d8d4a2d9a9c25ecf7784ebdfe9d8ae3ea916616d4a142187
-
Size
19.9MB
-
MD5
008afbc4a16dde427e27783f9f770661
-
SHA1
d5fd149e06e316052076fa188f153e1fdd5c349a
-
SHA256
46b8669e9461a618d8d4a2d9a9c25ecf7784ebdfe9d8ae3ea916616d4a142187
-
SHA512
7c8c6e76251e09d1393ed820de5afc48f903c015125d537f9ef7d3e97c567fb7ec688e3edeb03acf6ca405fd44db072c9fd01a2f15d7d55db04f9f21768f0351
-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-