Overview

overview

8

Static

static

miner.html

windows7-x64

1

miner.html

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    miner.exe

  • Size

    162B

  • Sample

    220907-cn1qhagbbn

  • MD5

    1b7c22a214949975556626d7217e9a39

  • SHA1

    d01c97e2944166ed23e47e4a62ff471ab8fa031f

  • SHA256

    340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

  • SHA512

    ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5

Score
8/10

Malware Config

Targets

    • Target

      miner.exe

    • Size

      162B

    • MD5

      1b7c22a214949975556626d7217e9a39

    • SHA1

      d01c97e2944166ed23e47e4a62ff471ab8fa031f

    • SHA256

      340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

    • SHA512

      ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5

    Score
    8/10

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks