General
-
Target
006900ac9843d03c0eaf477d9912377658a1c0b11610b66510f3784a4c53153f
-
Size
17.0MB
-
Sample
220516-q77vtafhcm
-
MD5
06bd69f7c277f2bca086966579d19fdf
-
SHA1
f33ab0a83c8c942b29352c266b48aa293fb86d62
-
SHA256
006900ac9843d03c0eaf477d9912377658a1c0b11610b66510f3784a4c53153f
-
SHA512
9c1883c6727779579c15bf768885e0ae38575fb2a3e5cdc5f08ce1c2264f1cefba2ef9bd8cf796a8eb49bc58d796438c45927def642b7d6e020598d76b6e106a
Behavioral task
behavioral1
Sample
006900ac9843d03c0eaf477d9912377658a1c0b11610b66510f3784a4c53153f.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
006900ac9843d03c0eaf477d9912377658a1c0b11610b66510f3784a4c53153f.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
006900ac9843d03c0eaf477d9912377658a1c0b11610b66510f3784a4c53153f
-
Size
17.0MB
-
MD5
06bd69f7c277f2bca086966579d19fdf
-
SHA1
f33ab0a83c8c942b29352c266b48aa293fb86d62
-
SHA256
006900ac9843d03c0eaf477d9912377658a1c0b11610b66510f3784a4c53153f
-
SHA512
9c1883c6727779579c15bf768885e0ae38575fb2a3e5cdc5f08ce1c2264f1cefba2ef9bd8cf796a8eb49bc58d796438c45927def642b7d6e020598d76b6e106a
Score10/10-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-