General
-
Target
ccc5d56ac23620235ead85fefa0b53de3cf5e56c52a76944e414deb806d67557
-
Size
25.6MB
-
Sample
220516-q6egwaffal
-
MD5
ffcf63694c01b350f6f70be7e45361c2
-
SHA1
855ba695ebd9d592ffde412583e53db039520957
-
SHA256
ccc5d56ac23620235ead85fefa0b53de3cf5e56c52a76944e414deb806d67557
-
SHA512
f1e91edea64a955eb370713bf7e75594d68cbcd9f5e9ba1574901dfa3e421694fe144558da64979553dfc19fb28fd0cfa0abb8cef129d94c7f742f647c1a536c
Behavioral task
behavioral1
Sample
ccc5d56ac23620235ead85fefa0b53de3cf5e56c52a76944e414deb806d67557.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
ccc5d56ac23620235ead85fefa0b53de3cf5e56c52a76944e414deb806d67557.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
ccc5d56ac23620235ead85fefa0b53de3cf5e56c52a76944e414deb806d67557
-
Size
25.6MB
-
MD5
ffcf63694c01b350f6f70be7e45361c2
-
SHA1
855ba695ebd9d592ffde412583e53db039520957
-
SHA256
ccc5d56ac23620235ead85fefa0b53de3cf5e56c52a76944e414deb806d67557
-
SHA512
f1e91edea64a955eb370713bf7e75594d68cbcd9f5e9ba1574901dfa3e421694fe144558da64979553dfc19fb28fd0cfa0abb8cef129d94c7f742f647c1a536c
Score10/10-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-