Overview

overview

10

Static

static

e2bd626f35...10.exe

windows7-x64

10

e2bd626f35...10.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e2bd626f3564b596991cacc52a77437c92bf6fd20dccd18bbba2cd0298a62f10

  • Size

    1.8MB

  • Sample

    221223-yzxzmscc9z

  • MD5

    aa36996c88eb61b1cb9514208c7bf988

  • SHA1

    a85cff123f475ef4ce58436ab08637b7e4b572e7

  • SHA256

    0c8c02aaa7668f52af2f92e98d9d00af13457f6a4e180cf153e253303468bf97

  • SHA512

    3628d07ab32cdf018426d532c55fe4e0fe4ec5360e30ec52d2e96d3052e22ab2fd0189e8016509ce5d3406d7cce6c81820db679199275d5e710fd66797e6e007

  • SSDEEP

    49152:ON65mmg48WqFDVzwmtY5U3tGa3MtID+xbhjkJ87w5S85cefvx:ON65mNzwcR36ID+xbmJoqp

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      e2bd626f3564b596991cacc52a77437c92bf6fd20dccd18bbba2cd0298a62f10

    • Size

      2.0MB

    • MD5

      458aea46c863b50682715900a848ff26

    • SHA1

      77cd33d12812df7c50bee28a234f9880d8ad2498

    • SHA256

      e2bd626f3564b596991cacc52a77437c92bf6fd20dccd18bbba2cd0298a62f10

    • SHA512

      ec4732d7fc1d961f218f9c19d75f3aea633cb468b400df6fe009f9a5c27c344a1b4790a5422838ff4b8aef0cf9b1bb241d3b6aaeaf2b8f762055a4d09e7d903d

    • SSDEEP

      49152:28DkwgEEIRmnl1DVHYYhdxiUFZ4l7jl1nUI3g3jkl83wdS8P+8Vv9:2okfRX4UTDennUI3g34lmi

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks