General
-
Target
0ba02f2d1a72eb0a85e55f3e40294fe888d31293d32aab9f48f234936f469af1
-
Size
12.3MB
-
Sample
220516-q72c2afhcl
-
MD5
03462aa8cacbab7a0c342e7d2fc64b01
-
SHA1
0b1a2f708fd22ecc21768d92d6ca2c30e9074d36
-
SHA256
0ba02f2d1a72eb0a85e55f3e40294fe888d31293d32aab9f48f234936f469af1
-
SHA512
656bf09d92fb0e14ff9c646f80464a4f02248a962c63ed9c199fa130ab3c00b696b487106fcf7d82255e8446e52a0b4b635c1bcd90b2e2b3c4503f3d2b72f53f
Behavioral task
behavioral1
Sample
0ba02f2d1a72eb0a85e55f3e40294fe888d31293d32aab9f48f234936f469af1.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
0ba02f2d1a72eb0a85e55f3e40294fe888d31293d32aab9f48f234936f469af1.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
0ba02f2d1a72eb0a85e55f3e40294fe888d31293d32aab9f48f234936f469af1
-
Size
12.3MB
-
MD5
03462aa8cacbab7a0c342e7d2fc64b01
-
SHA1
0b1a2f708fd22ecc21768d92d6ca2c30e9074d36
-
SHA256
0ba02f2d1a72eb0a85e55f3e40294fe888d31293d32aab9f48f234936f469af1
-
SHA512
656bf09d92fb0e14ff9c646f80464a4f02248a962c63ed9c199fa130ab3c00b696b487106fcf7d82255e8446e52a0b4b635c1bcd90b2e2b3c4503f3d2b72f53f
Score10/10-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-