General
-
Target
a127c3ece71022b00582172d3c457fa9752d00b8b46c385e984f52c9e8ab2745
-
Size
20.4MB
-
Sample
220516-q6hjjadac3
-
MD5
02b2e41141750599e791c4a780d0f5ab
-
SHA1
1ac246f8e0c4372df295b3990100b190d713f000
-
SHA256
a127c3ece71022b00582172d3c457fa9752d00b8b46c385e984f52c9e8ab2745
-
SHA512
08f212144684d7e1087fb984dec4335b75670510a6916dedf10f4cc5b87853cb1efa4ad1524789a2ed6b80540fab222d58ebae8b95a2fc9b32636a1fae8e7ef6
Behavioral task
behavioral1
Sample
a127c3ece71022b00582172d3c457fa9752d00b8b46c385e984f52c9e8ab2745.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
a127c3ece71022b00582172d3c457fa9752d00b8b46c385e984f52c9e8ab2745.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
a127c3ece71022b00582172d3c457fa9752d00b8b46c385e984f52c9e8ab2745
-
Size
20.4MB
-
MD5
02b2e41141750599e791c4a780d0f5ab
-
SHA1
1ac246f8e0c4372df295b3990100b190d713f000
-
SHA256
a127c3ece71022b00582172d3c457fa9752d00b8b46c385e984f52c9e8ab2745
-
SHA512
08f212144684d7e1087fb984dec4335b75670510a6916dedf10f4cc5b87853cb1efa4ad1524789a2ed6b80540fab222d58ebae8b95a2fc9b32636a1fae8e7ef6
Score10/10-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-