General
-
Target
5477a658ca905a393af0d98804a510a98e975878e9e02b25803e6346d929c532
-
Size
1.8MB
-
Sample
240614-1fdg1axajd
-
MD5
b0a071db7f478bbd59c9171fb7cd0d2a
-
SHA1
c44ffb9a74879f9f18c512ce05c1a076dde50847
-
SHA256
5477a658ca905a393af0d98804a510a98e975878e9e02b25803e6346d929c532
-
SHA512
feef62b5e47555947e8559e8607a0014caa3e52ca08f41fe1b2fd6f99a7a0d62c8bac0e9032ab168f15dcc4d4041cd33a09e9af926bfd80ae820d374d520e162
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkUCCWvLEvjpbc8nJwbomvu2Nrlum7+a7EtLgCPimze:Lz071uv4BPMkHC0IBcAUNRSa7kj5ze
Behavioral task
behavioral1
Sample
5477a658ca905a393af0d98804a510a98e975878e9e02b25803e6346d929c532.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
5477a658ca905a393af0d98804a510a98e975878e9e02b25803e6346d929c532
-
Size
1.8MB
-
MD5
b0a071db7f478bbd59c9171fb7cd0d2a
-
SHA1
c44ffb9a74879f9f18c512ce05c1a076dde50847
-
SHA256
5477a658ca905a393af0d98804a510a98e975878e9e02b25803e6346d929c532
-
SHA512
feef62b5e47555947e8559e8607a0014caa3e52ca08f41fe1b2fd6f99a7a0d62c8bac0e9032ab168f15dcc4d4041cd33a09e9af926bfd80ae820d374d520e162
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkUCCWvLEvjpbc8nJwbomvu2Nrlum7+a7EtLgCPimze:Lz071uv4BPMkHC0IBcAUNRSa7kj5ze
-
Detects executables containing URLs to raw contents of a Github gist
-
UPX dump on OEP (original entry point)
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-