Overview

overview

10

Static

static

1

file.exe

windows7-x64

7

file.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.exe

  • Size

    1.2MB

  • Sample

    230517-gyq19sch8v

  • MD5

    47680487f473d32f043584495b841618

  • SHA1

    eed46290d6d5951bbfedfc836a86db70310e1e0a

  • SHA256

    cc9257055e40934bd5b28a845060374ef52d5ed16d8c3c36e51a74cc3b1b979c

  • SHA512

    8db0507a565aa55c9f0f54506e93235e4daf171bdd55bc38baedde3520ec218ebbaa8eeb6c292d6ff36360636e02f0bda1674d43083a85b9410451fc40f1e4bb

  • SSDEEP

    24576:MnX7X7EKuJ1LOgT3p/xbH25z00QZdX8dZ4gemlS0dvsEniGPT8F+IEoN:MnLYKu/Og7DbH2O0QZdMv4B0dvsEzPTM

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      file.exe

    • Size

      1.2MB

    • MD5

      47680487f473d32f043584495b841618

    • SHA1

      eed46290d6d5951bbfedfc836a86db70310e1e0a

    • SHA256

      cc9257055e40934bd5b28a845060374ef52d5ed16d8c3c36e51a74cc3b1b979c

    • SHA512

      8db0507a565aa55c9f0f54506e93235e4daf171bdd55bc38baedde3520ec218ebbaa8eeb6c292d6ff36360636e02f0bda1674d43083a85b9410451fc40f1e4bb

    • SSDEEP

      24576:MnX7X7EKuJ1LOgT3p/xbH25z00QZdX8dZ4gemlS0dvsEniGPT8F+IEoN:MnLYKu/Og7DbH2O0QZdMv4B0dvsEzPTM

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks