General
-
Target
4b61679662313916b18999fbe63ea2d0163d2b3e6aad16e09aea27cbb97dac9e
-
Size
2.1MB
-
Sample
220520-w9evpscbc9
-
MD5
087d6c8306538655e99a7cbc734152e6
-
SHA1
3f4499b01e23549ce5c2992ffaf098de9ed4cbc6
-
SHA256
4b61679662313916b18999fbe63ea2d0163d2b3e6aad16e09aea27cbb97dac9e
-
SHA512
60b8822d1cff7fb8b82484a50fb195148d9f0d11c5d5d14a9f01c5622a324ec433828087c32416037b0567d68527364d6795bb302575d6b5e739e027ea400b40
Static task
static1
Behavioral task
behavioral1
Sample
4b61679662313916b18999fbe63ea2d0163d2b3e6aad16e09aea27cbb97dac9e.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
4b61679662313916b18999fbe63ea2d0163d2b3e6aad16e09aea27cbb97dac9e
-
Size
2.1MB
-
MD5
087d6c8306538655e99a7cbc734152e6
-
SHA1
3f4499b01e23549ce5c2992ffaf098de9ed4cbc6
-
SHA256
4b61679662313916b18999fbe63ea2d0163d2b3e6aad16e09aea27cbb97dac9e
-
SHA512
60b8822d1cff7fb8b82484a50fb195148d9f0d11c5d5d14a9f01c5622a324ec433828087c32416037b0567d68527364d6795bb302575d6b5e739e027ea400b40
-
XMRig Miner Payload
-
Executes dropped EXE
-
Stops running service(s)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-