General
-
Target
54d75b69a448bda4dedb9e6fe3335d7c2457e0d0264c7c457cca17364c970eca
-
Size
1.8MB
-
Sample
240613-2xextsxgmp
-
MD5
f4f69f2d004a582e6530e18087d13df7
-
SHA1
4490eabb249b77d8aa18d3b366cba0674a7f147b
-
SHA256
54d75b69a448bda4dedb9e6fe3335d7c2457e0d0264c7c457cca17364c970eca
-
SHA512
7977dfdec7f85c172e90a48bacc000d3b68d72febb00967f410ddea94838c42b396a366993b920c8a5be15664887b7a87f263ce0f0bc2ca3c59dbe0b5b7b4d2d
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkyW1HU/ek5Q1szp5NnNvZWNChZ7fI+7RrTFl6hvVjC:Lz071uv4BPMkyW10/w16BvZX71Fq86zM
Behavioral task
behavioral1
Sample
54d75b69a448bda4dedb9e6fe3335d7c2457e0d0264c7c457cca17364c970eca.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
54d75b69a448bda4dedb9e6fe3335d7c2457e0d0264c7c457cca17364c970eca
-
Size
1.8MB
-
MD5
f4f69f2d004a582e6530e18087d13df7
-
SHA1
4490eabb249b77d8aa18d3b366cba0674a7f147b
-
SHA256
54d75b69a448bda4dedb9e6fe3335d7c2457e0d0264c7c457cca17364c970eca
-
SHA512
7977dfdec7f85c172e90a48bacc000d3b68d72febb00967f410ddea94838c42b396a366993b920c8a5be15664887b7a87f263ce0f0bc2ca3c59dbe0b5b7b4d2d
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkyW1HU/ek5Q1szp5NnNvZWNChZ7fI+7RrTFl6hvVjC:Lz071uv4BPMkyW10/w16BvZX71Fq86zM
-
Detects executables containing URLs to raw contents of a Github gist
-
UPX dump on OEP (original entry point)
-
XMRig Miner payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-