Overview

overview

10

Static

static

3

176c01eadc...ba.exe

windows7-x64

7

176c01eadc...ba.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    176c01eadc93bcdd44484eed12be81470a5d6843e1316f9b9ad23ded0da544ba

  • Size

    2.8MB

  • Sample

    240328-wswf5adf25

  • MD5

    50bf71ce7279b0449553b4be536822c3

  • SHA1

    ba427c9cac10521248b6265bf2cacb997a8f80b5

  • SHA256

    176c01eadc93bcdd44484eed12be81470a5d6843e1316f9b9ad23ded0da544ba

  • SHA512

    15b60c5f04af2ae0a99ab13b98b3dbea92a6c7e1f35bc2010f97736e1226811cf4b74b19ab4055e61051ddbe3dda7a3f97019d6b062201145d02433b27645bbb

  • SSDEEP

    49152:tMDRZ9IBVL+s0ezJGd80SHMsThF35Hj1Bzuzm4:tMDtIXLr06AdfEThF35PzuH

Score
10/10
xmrigminerpyinstaller

Malware Config

Targets

    • Target

      176c01eadc93bcdd44484eed12be81470a5d6843e1316f9b9ad23ded0da544ba

    • Size

      2.8MB

    • MD5

      50bf71ce7279b0449553b4be536822c3

    • SHA1

      ba427c9cac10521248b6265bf2cacb997a8f80b5

    • SHA256

      176c01eadc93bcdd44484eed12be81470a5d6843e1316f9b9ad23ded0da544ba

    • SHA512

      15b60c5f04af2ae0a99ab13b98b3dbea92a6c7e1f35bc2010f97736e1226811cf4b74b19ab4055e61051ddbe3dda7a3f97019d6b062201145d02433b27645bbb

    • SSDEEP

      49152:tMDRZ9IBVL+s0ezJGd80SHMsThF35Hj1Bzuzm4:tMDtIXLr06AdfEThF35PzuH

    Score
    10/10
    xmrigminerpyinstaller

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks