General

  • Target

    15b965b9d5f9f258936f5c23737aef95d8774c33719187388f21748b3f472b2b

  • Size

    3.3MB

  • Sample

    240527-xwat9sef31

  • MD5

    63a10152a27821ccfb761f1e94f0930a

  • SHA1

    e6a871c1026264a1e15ad94f5c5785fb14881424

  • SHA256

    15b965b9d5f9f258936f5c23737aef95d8774c33719187388f21748b3f472b2b

  • SHA512

    49480aba7c0c3527d17595a9bbe29bec27f587bcd6e960812cfaaef96cf56ebd9eeba3ed3243f08de0e484820cb3706f6b0043014c553657f8bfdda094cf1333

  • SSDEEP

    98304:N0GnJMOWPClFdx6e0EALKWVTffZiPAcRq6jHjc4m:NFWPClF2

Score
10/10

Malware Config

Targets

    • Target

      15b965b9d5f9f258936f5c23737aef95d8774c33719187388f21748b3f472b2b

    • Size

      3.3MB

    • MD5

      63a10152a27821ccfb761f1e94f0930a

    • SHA1

      e6a871c1026264a1e15ad94f5c5785fb14881424

    • SHA256

      15b965b9d5f9f258936f5c23737aef95d8774c33719187388f21748b3f472b2b

    • SHA512

      49480aba7c0c3527d17595a9bbe29bec27f587bcd6e960812cfaaef96cf56ebd9eeba3ed3243f08de0e484820cb3706f6b0043014c553657f8bfdda094cf1333

    • SSDEEP

      98304:N0GnJMOWPClFdx6e0EALKWVTffZiPAcRq6jHjc4m:NFWPClF2

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • UPX dump on OEP (original entry point)

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks