Overview

overview

9

Static

static

9

nhm_window....0.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    nhm_windows_3.1.1.0.exe

  • Size

    59.4MB

  • Sample

    240522-y2532afa2y

  • MD5

    f8150f79dc9ff6bd7d6125833d40fd4d

  • SHA1

    45d57406663dbb82f77e2cbe113f477585dae2ed

  • SHA256

    0135aafc6a99a21d8bd2e890f91addf37a2702f0caa8863708a90825c44c9fc6

  • SHA512

    911a75e018f43880cc07ccc3817406de7050183868793f4862d729d6e6bc0b3576e68bf4a4d67caf8a18d51c0b7f6a2ce251d8213923543b98d7e4c3157ace52

  • SSDEEP

    1572864:59DSIGOFHBrKZon4TyqKH9n2ELQhIxJslzR5ScHY3botwMq:5JSjOFhrce8yqKd3yIslz3MMtwx

Score
9/10
discoveryminer

Malware Config

Targets

    • Target

      nhm_windows_3.1.1.0.exe

    • Size

      59.4MB

    • MD5

      f8150f79dc9ff6bd7d6125833d40fd4d

    • SHA1

      45d57406663dbb82f77e2cbe113f477585dae2ed

    • SHA256

      0135aafc6a99a21d8bd2e890f91addf37a2702f0caa8863708a90825c44c9fc6

    • SHA512

      911a75e018f43880cc07ccc3817406de7050183868793f4862d729d6e6bc0b3576e68bf4a4d67caf8a18d51c0b7f6a2ce251d8213923543b98d7e4c3157ace52

    • SSDEEP

      1572864:59DSIGOFHBrKZon4TyqKH9n2ELQhIxJslzR5ScHY3botwMq:5JSjOFhrce8yqKd3yIslz3MMtwx

    Score
    9/10
    discoveryminer

    • Detectes NBMiner Payload

      miner

    • Detectes NanoMiner Payload

      miner

    • Detectes NiceHashMiner Payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks