General

  • Target

    590d3088ed566cb3d85d48f4914cc657ee49b7d33e85c72167e7c72d81d4cb6c

  • Size

    9.0MB

  • Sample

    240614-pd66ratfmm

  • MD5

    5315d928cff19507f66d59b174280e8a

  • SHA1

    bb3575b84cd7d9270abf0811b07efff4f12c4370

  • SHA256

    590d3088ed566cb3d85d48f4914cc657ee49b7d33e85c72167e7c72d81d4cb6c

  • SHA512

    a58b253f5bb399eef044a790ab22256e31d2e144ee2bd87f678c176fb0e983925f7bbd49923d4dd9aeddd0bc7e70c4eb4eac902f90aefa21f4a2f0c1f70174bb

  • SSDEEP

    196608:rhHMBGC3PtXtT+Was86wq1wo9JoYx5JAMdJOnZTG1IvQSaKe6NZOn:r2G07wuwasMdJOnZKVSaaNZOn

Malware Config

Targets

    • Target

      590d3088ed566cb3d85d48f4914cc657ee49b7d33e85c72167e7c72d81d4cb6c

    • Size

      9.0MB

    • MD5

      5315d928cff19507f66d59b174280e8a

    • SHA1

      bb3575b84cd7d9270abf0811b07efff4f12c4370

    • SHA256

      590d3088ed566cb3d85d48f4914cc657ee49b7d33e85c72167e7c72d81d4cb6c

    • SHA512

      a58b253f5bb399eef044a790ab22256e31d2e144ee2bd87f678c176fb0e983925f7bbd49923d4dd9aeddd0bc7e70c4eb4eac902f90aefa21f4a2f0c1f70174bb

    • SSDEEP

      196608:rhHMBGC3PtXtT+Was86wq1wo9JoYx5JAMdJOnZTG1IvQSaKe6NZOn:r2G07wuwasMdJOnZKVSaaNZOn

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks