General

  • Target

    769a85314bf1bf1ba0f0e1ce95b2825090eb860ffb17de3e28260795e9050ecb

  • Size

    4.0MB

  • Sample

    221002-18gecsdag5

  • MD5

    2b7b5dd26403d890f97f8eeb0cf02a70

  • SHA1

    f8399fbf69e1905a9b098b25e94038fa7cdac03a

  • SHA256

    769a85314bf1bf1ba0f0e1ce95b2825090eb860ffb17de3e28260795e9050ecb

  • SHA512

    80cc2f8edde3d8a0c3e1c746e93e7ab9f815352ff386f29ca5636bf1e8fc747c76e43edae12d7ee8d6b294793875420f62965ef790cb5fbcb1faef3b2d5bdcbe

  • SSDEEP

    98304:9HgTxtsjl6/+ITBlGCQhBGXZ//aTOnd/AMPcNDwONoRMKHxPXt9yLuPxGSH:9kMjl6/+EQhuKOntLcNDwONoRnH5XPxZ

Score
10/10

Malware Config

Targets

    • Target

      769a85314bf1bf1ba0f0e1ce95b2825090eb860ffb17de3e28260795e9050ecb

    • Size

      4.0MB

    • MD5

      2b7b5dd26403d890f97f8eeb0cf02a70

    • SHA1

      f8399fbf69e1905a9b098b25e94038fa7cdac03a

    • SHA256

      769a85314bf1bf1ba0f0e1ce95b2825090eb860ffb17de3e28260795e9050ecb

    • SHA512

      80cc2f8edde3d8a0c3e1c746e93e7ab9f815352ff386f29ca5636bf1e8fc747c76e43edae12d7ee8d6b294793875420f62965ef790cb5fbcb1faef3b2d5bdcbe

    • SSDEEP

      98304:9HgTxtsjl6/+ITBlGCQhBGXZ//aTOnd/AMPcNDwONoRMKHxPXt9yLuPxGSH:9kMjl6/+EQhuKOntLcNDwONoRnH5XPxZ

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Tasks