General

  • Target

    88352779a31f71a713c3098683d419bfad15c5e3a604badf1c3216fbad08b88f

  • Size

    2.6MB

  • Sample

    240610-sqd8aa1glm

  • MD5

    e7a1234058b8a69b04dbe88e4c1c55ea

  • SHA1

    37815e1cfe5dfdde9450fa2002bdca08323d4466

  • SHA256

    88352779a31f71a713c3098683d419bfad15c5e3a604badf1c3216fbad08b88f

  • SHA512

    2581523fe25aedc0a817811ac905f4c27d27954e50e503236530cb602b1a7be34ea880fee1104ea56b6ea6771ab5aa745714c84f5bf8301ebc2b628c3bf30385

  • SSDEEP

    49152:l2+OYn1NDJjuFLnGgQL+BPFIz8jBy7PnYdQ0tQsLK4:lPp3huBbJVFC8uPYHesLK4

Malware Config

Targets

    • Target

      88352779a31f71a713c3098683d419bfad15c5e3a604badf1c3216fbad08b88f

    • Size

      2.6MB

    • MD5

      e7a1234058b8a69b04dbe88e4c1c55ea

    • SHA1

      37815e1cfe5dfdde9450fa2002bdca08323d4466

    • SHA256

      88352779a31f71a713c3098683d419bfad15c5e3a604badf1c3216fbad08b88f

    • SHA512

      2581523fe25aedc0a817811ac905f4c27d27954e50e503236530cb602b1a7be34ea880fee1104ea56b6ea6771ab5aa745714c84f5bf8301ebc2b628c3bf30385

    • SSDEEP

      49152:l2+OYn1NDJjuFLnGgQL+BPFIz8jBy7PnYdQ0tQsLK4:lPp3huBbJVFC8uPYHesLK4

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Creates new service(s)

    • Stops running service(s)

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks