General
-
Target
browser_assistant.exe
-
Size
5.6MB
-
Sample
221009-g6lrhsgeej
-
MD5
6d478e1c67cf16723de2cb550316875e
-
SHA1
55eeb4c6d10e5dcdeb44b250b287bb7f062534e2
-
SHA256
386c57582b7d542de1d6164de34cfea4706fc6418a14c69eb246feca2711003e
-
SHA512
d241716c531d37231de7ba0a080281642442f515922ffb250d38b4f7eaf317301a633e226879f5053f0cb18b7265826209d4361c0a85352a77c5400388d2583c
-
SSDEEP
98304:3q4BKpzoLLJ3TbwaVvrZE0I8LrKI8F/Vtt1mIi3pRN8D8cXu21Tb08DFscqNCSsW:3qqK9onJ5hrZEK3e9tGPqKmTb0+FscoK
Behavioral task
behavioral1
Sample
browser_assistant.exe
Resource
win7-20220812-en
Malware Config
Targets
-
-
Target
browser_assistant.exe
-
Size
5.6MB
-
MD5
6d478e1c67cf16723de2cb550316875e
-
SHA1
55eeb4c6d10e5dcdeb44b250b287bb7f062534e2
-
SHA256
386c57582b7d542de1d6164de34cfea4706fc6418a14c69eb246feca2711003e
-
SHA512
d241716c531d37231de7ba0a080281642442f515922ffb250d38b4f7eaf317301a633e226879f5053f0cb18b7265826209d4361c0a85352a77c5400388d2583c
-
SSDEEP
98304:3q4BKpzoLLJ3TbwaVvrZE0I8LrKI8F/Vtt1mIi3pRN8D8cXu21Tb08DFscqNCSsW:3qqK9onJ5hrZEK3e9tGPqKmTb0+FscoK
-
XMRig Miner payload
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of SetThreadContext
-