General
-
Target
22b5e969c1621e6065f407f9fb7f71ef21b592982cc75ff402892b399a49e9a7
-
Size
14.8MB
-
Sample
220516-q7wgsafhcj
-
MD5
0167d867d0e0c974d66d6ff02cda9c1c
-
SHA1
1580c09b356286bb4ab5526ec2367c6c5d36ec0a
-
SHA256
22b5e969c1621e6065f407f9fb7f71ef21b592982cc75ff402892b399a49e9a7
-
SHA512
e8ef3047e28d7f237f05bde56b543ad67667e1dd83cde7ecdafa303b12dc33dfa95902b1afb4571a7edff699191b92d05ace1d9add54df2520604aa52c10e6be
Behavioral task
behavioral1
Sample
22b5e969c1621e6065f407f9fb7f71ef21b592982cc75ff402892b399a49e9a7.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
22b5e969c1621e6065f407f9fb7f71ef21b592982cc75ff402892b399a49e9a7.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
22b5e969c1621e6065f407f9fb7f71ef21b592982cc75ff402892b399a49e9a7
-
Size
14.8MB
-
MD5
0167d867d0e0c974d66d6ff02cda9c1c
-
SHA1
1580c09b356286bb4ab5526ec2367c6c5d36ec0a
-
SHA256
22b5e969c1621e6065f407f9fb7f71ef21b592982cc75ff402892b399a49e9a7
-
SHA512
e8ef3047e28d7f237f05bde56b543ad67667e1dd83cde7ecdafa303b12dc33dfa95902b1afb4571a7edff699191b92d05ace1d9add54df2520604aa52c10e6be
Score10/10-
XMRig Miner Payload
-
Executes dropped EXE
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-