General
-
Target
41b5776e5d36a11b78fcd985842ca9d27a17443d21b4d81d781f568a1326fe7e
-
Size
19.4MB
-
Sample
220516-q7mvmsdca2
-
MD5
c392194ef362821ba617bd0198b91e0a
-
SHA1
a36770d5a92125aa8d0033e5585f2d90d819a353
-
SHA256
41b5776e5d36a11b78fcd985842ca9d27a17443d21b4d81d781f568a1326fe7e
-
SHA512
eda89f3fc0206ede495a4226cff2607af8e08a9817dd0ef107c61c53932413ade818ae50975f8253328c71c5668de7f649b1cf491b252ebb6558b3a4836c3c71
Behavioral task
behavioral1
Sample
41b5776e5d36a11b78fcd985842ca9d27a17443d21b4d81d781f568a1326fe7e.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
41b5776e5d36a11b78fcd985842ca9d27a17443d21b4d81d781f568a1326fe7e.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
41b5776e5d36a11b78fcd985842ca9d27a17443d21b4d81d781f568a1326fe7e
-
Size
19.4MB
-
MD5
c392194ef362821ba617bd0198b91e0a
-
SHA1
a36770d5a92125aa8d0033e5585f2d90d819a353
-
SHA256
41b5776e5d36a11b78fcd985842ca9d27a17443d21b4d81d781f568a1326fe7e
-
SHA512
eda89f3fc0206ede495a4226cff2607af8e08a9817dd0ef107c61c53932413ade818ae50975f8253328c71c5668de7f649b1cf491b252ebb6558b3a4836c3c71
Score10/10-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-