Overview

overview

10

Static

static

7731568972...45.exe

windows7-x64

10

7731568972...45.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7731568972ff05de0d04ad8ebb2572fd9857986062bef089a27879486bf60745

  • Size

    2.0MB

  • Sample

    221229-arnh8sca72

  • MD5

    212b0f14a671945cdbb28944af85b4eb

  • SHA1

    d7ceb230a21f120413d20d8266b42e08e9fc7bbd

  • SHA256

    c84393de496b00bd8ead4c30a29f2607f5c4b8e26553bf7c55161428f1d2951c

  • SHA512

    33203305b7aec6438d550fce0fd9c27a90b7c073a77f90d2e8043615f48ed7aba14ff0c5517c36e6464d2f0715f4e5c9a84324a7fc25739347d4c475b190336d

  • SSDEEP

    49152:eltnTBIIHAcWHpfwY/Gegk2pWXBHo9F7gml4VBpQR:K1HAcWHBwsg/KQum2VBpQR

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      7731568972ff05de0d04ad8ebb2572fd9857986062bef089a27879486bf60745

    • Size

      2.6MB

    • MD5

      091ac1a11cc1419282cb85451cf3ed36

    • SHA1

      08b743b95fdc9ec551bf0cd326629852e591aaa8

    • SHA256

      7731568972ff05de0d04ad8ebb2572fd9857986062bef089a27879486bf60745

    • SHA512

      486641a79ee8c059d7fccfc8b0a4ea876baffaea54f89ff100986afdf2d4caf165d3c7205d90a3a1977fdfcd3349dab50ce7a4ae329f479659f84ea7095cd7eb

    • SSDEEP

      49152:aReam3ABOipMuOd6PDK6mKiJKBC0zTs5MkYVwIZSe33JBLCHq:azOSBOc4+CaTUkL3JBLCHq

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks