General

  • Target

    75206e7dddfbd0380a246fa714e8c6d3

  • Size

    784KB

  • Sample

    240125-wbvs9schek

  • MD5

    75206e7dddfbd0380a246fa714e8c6d3

  • SHA1

    91839ed67fe4261f39786ee1ba0f474e5beae9e7

  • SHA256

    02924ebd122b1c606b6796bdf1acd196a2a80bee75ecbb826f02f428e71cc58d

  • SHA512

    c0f2fe4502613fdfd066b7b47e480d8810fdc966b53c7f8d7e1e251e6cda4150a414e145fbea4d95fd9f16028ec27ff054182f25b8b09d1f5e7d5686b78bc4cd

  • SSDEEP

    12288:Vd0reE0N0+Q/Pa+HWBrNUCWEzukNEaZgnU93DrXn9e0V7X2+yi:w6IBXxQUS/gniDrXnhVj

Malware Config

Targets

    • Target

      75206e7dddfbd0380a246fa714e8c6d3

    • Size

      784KB

    • MD5

      75206e7dddfbd0380a246fa714e8c6d3

    • SHA1

      91839ed67fe4261f39786ee1ba0f474e5beae9e7

    • SHA256

      02924ebd122b1c606b6796bdf1acd196a2a80bee75ecbb826f02f428e71cc58d

    • SHA512

      c0f2fe4502613fdfd066b7b47e480d8810fdc966b53c7f8d7e1e251e6cda4150a414e145fbea4d95fd9f16028ec27ff054182f25b8b09d1f5e7d5686b78bc4cd

    • SSDEEP

      12288:Vd0reE0N0+Q/Pa+HWBrNUCWEzukNEaZgnU93DrXn9e0V7X2+yi:w6IBXxQUS/gniDrXnhVj

    • Kinsing

      Kinsing is a loader written in Golang.

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks