General
-
Target
3c709f77cbe8943f2bcfb75b2231f37cf0f9aa080aa5f2fb477b684416c6c782
-
Size
1.1MB
-
Sample
220703-ja1lxaadeq
-
MD5
c1d6cef4cf9fd0ad81e1fff789b01cb9
-
SHA1
759ec4183a156ce1eb6a9d6605335e07f579114e
-
SHA256
3c709f77cbe8943f2bcfb75b2231f37cf0f9aa080aa5f2fb477b684416c6c782
-
SHA512
dbc6501fac45b7c04837e55a061c58745f25e957315f1e793493f9fd6f7dd333b9e5d74f2b2b6ae1eb3575790577966aa865bafb80847cfd21e992d9a585791e
Behavioral task
behavioral1
Sample
3c709f77cbe8943f2bcfb75b2231f37cf0f9aa080aa5f2fb477b684416c6c782.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
3c709f77cbe8943f2bcfb75b2231f37cf0f9aa080aa5f2fb477b684416c6c782
-
Size
1.1MB
-
MD5
c1d6cef4cf9fd0ad81e1fff789b01cb9
-
SHA1
759ec4183a156ce1eb6a9d6605335e07f579114e
-
SHA256
3c709f77cbe8943f2bcfb75b2231f37cf0f9aa080aa5f2fb477b684416c6c782
-
SHA512
dbc6501fac45b7c04837e55a061c58745f25e957315f1e793493f9fd6f7dd333b9e5d74f2b2b6ae1eb3575790577966aa865bafb80847cfd21e992d9a585791e
-
XMRig Miner Payload
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Drops file in System32 directory
-