General

  • Target

    NEAS.b10ff66592e8265e219c61be9c9c3460.exe

  • Size

    3.2MB

  • Sample

    231102-va526sad3t

  • MD5

    b10ff66592e8265e219c61be9c9c3460

  • SHA1

    05e8d27e55891268bada8d6c4d1cb23d564baea0

  • SHA256

    ffe1db89468060ea3873930e676369107eaa290dc82e7a49894323a47970ccc6

  • SHA512

    ffc8b31540fc41e1480cafcb9dceca540730e312ec60c6f16f03ebc1d50f707434cfdbea3483c31d6b8405b70775e531d4887ad3df2c24cdb64cf738745b6c6a

  • SSDEEP

    98304:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrWR:SbBeSFkN

Score
10/10

Malware Config

Targets

    • Target

      NEAS.b10ff66592e8265e219c61be9c9c3460.exe

    • Size

      3.2MB

    • MD5

      b10ff66592e8265e219c61be9c9c3460

    • SHA1

      05e8d27e55891268bada8d6c4d1cb23d564baea0

    • SHA256

      ffe1db89468060ea3873930e676369107eaa290dc82e7a49894323a47970ccc6

    • SHA512

      ffc8b31540fc41e1480cafcb9dceca540730e312ec60c6f16f03ebc1d50f707434cfdbea3483c31d6b8405b70775e531d4887ad3df2c24cdb64cf738745b6c6a

    • SSDEEP

      98304:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrWR:SbBeSFkN

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Blocklisted process makes network request

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks