General
Static task
static1
URLScan task
urlscan1
Malware Config
Targets
-
-
Target
https://vx-underground.org/Samples/
-
Detect Blackmoon payload
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
XMRig Miner payload
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-