General

  • Target

    15765fa300386b7143c2d2a9e55ff6ce840b1576a2ed43afc31fded0a8c21513

  • Size

    2.6MB

  • Sample

    240527-xvwqcaef2w

  • MD5

    39dbcd19cad718795952bcb6edeff4b8

  • SHA1

    bfe1148a6cd349a092f79feef069b275f5e028ef

  • SHA256

    15765fa300386b7143c2d2a9e55ff6ce840b1576a2ed43afc31fded0a8c21513

  • SHA512

    6fb37e59c590ced98718a3a44989abe3b8d9d1be481e8a2d25f08b99db55a4c3d3d4fdd73a70c72eb05e3e59fe56031288d70ca29733c0cfd399d34101b1f858

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIV56uL3pgrCEdMKPIH2BuEoIA:BemTLkNdfE0pZrV56utgpPY

Malware Config

Targets

    • Target

      15765fa300386b7143c2d2a9e55ff6ce840b1576a2ed43afc31fded0a8c21513

    • Size

      2.6MB

    • MD5

      39dbcd19cad718795952bcb6edeff4b8

    • SHA1

      bfe1148a6cd349a092f79feef069b275f5e028ef

    • SHA256

      15765fa300386b7143c2d2a9e55ff6ce840b1576a2ed43afc31fded0a8c21513

    • SHA512

      6fb37e59c590ced98718a3a44989abe3b8d9d1be481e8a2d25f08b99db55a4c3d3d4fdd73a70c72eb05e3e59fe56031288d70ca29733c0cfd399d34101b1f858

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIV56uL3pgrCEdMKPIH2BuEoIA:BemTLkNdfE0pZrV56utgpPY

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • UPX dump on OEP (original entry point)

    • XMRig Miner payload

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks