General
-
Target
ad0aca1934f02768fd5fedaf4d9762a3
-
Size
43KB
-
Sample
240228-2lxcqsff76
-
MD5
ad0aca1934f02768fd5fedaf4d9762a3
-
SHA1
0e5b8372015d81200c4eff22823e854d0030f305
-
SHA256
dc10f50f9761f6fbafe665e75a331b2048a285b1857ad95e0611ace825cba388
-
SHA512
2fba342010ba85440784190245f74ea9e7c70974df12c241ccb6b72a6e1006a72bd1fa2e657f434d7479758f9508edb315398f6e95d167a78b788cea732be3b7
-
SSDEEP
768:0LsiW8XQn6hvJhLP2vt83id406wh6R71o/dx/m5Td/OFVexrg7iRjekdmIglUf:0Ls5ot3LC864Pwhk7Kdlmdd/OForljes
Malware Config
Targets
-
-
Target
ad0aca1934f02768fd5fedaf4d9762a3
-
Size
43KB
-
MD5
ad0aca1934f02768fd5fedaf4d9762a3
-
SHA1
0e5b8372015d81200c4eff22823e854d0030f305
-
SHA256
dc10f50f9761f6fbafe665e75a331b2048a285b1857ad95e0611ace825cba388
-
SHA512
2fba342010ba85440784190245f74ea9e7c70974df12c241ccb6b72a6e1006a72bd1fa2e657f434d7479758f9508edb315398f6e95d167a78b788cea732be3b7
-
SSDEEP
768:0LsiW8XQn6hvJhLP2vt83id406wh6R71o/dx/m5Td/OFVexrg7iRjekdmIglUf:0Ls5ot3LC864Pwhk7Kdlmdd/OForljes
Score10/10-
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
-
XMRig Miner payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of SetThreadContext
-