Resubmissions
14-06-2024 17:49
240614-wdz6rsthrm 10General
-
Target
679bc0ce54f81a8899cb5c64a7c6f10b.exe
-
Size
9.0MB
-
Sample
240614-wdz6rsthrm
-
MD5
679bc0ce54f81a8899cb5c64a7c6f10b
-
SHA1
93d23ae82e04defc7ceadafe2e5106e636be61dd
-
SHA256
77bfcc49e879f4c7b3ab170d65599ac49c4eb40a96228449d45e3cde428f9b71
-
SHA512
e13c02fb634942dabfeb44af5503487fa1ecf81c9ce75d0714ae144c39e49a666b871dead10739b433ec576ac6e34a03727b35f3ba157fd82fc22c600650367f
-
SSDEEP
196608:rhHMBGC3PtXtT+Was8Ewq1wo9JoYx5JAMdJOnZTG1IvQSaKe6NZOn:r2G0pwuwasMdJOnZKVSaaNZOn
Static task
static1
Behavioral task
behavioral1
Sample
679bc0ce54f81a8899cb5c64a7c6f10b.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
679bc0ce54f81a8899cb5c64a7c6f10b.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
679bc0ce54f81a8899cb5c64a7c6f10b.exe
-
Size
9.0MB
-
MD5
679bc0ce54f81a8899cb5c64a7c6f10b
-
SHA1
93d23ae82e04defc7ceadafe2e5106e636be61dd
-
SHA256
77bfcc49e879f4c7b3ab170d65599ac49c4eb40a96228449d45e3cde428f9b71
-
SHA512
e13c02fb634942dabfeb44af5503487fa1ecf81c9ce75d0714ae144c39e49a666b871dead10739b433ec576ac6e34a03727b35f3ba157fd82fc22c600650367f
-
SSDEEP
196608:rhHMBGC3PtXtT+Was8Ewq1wo9JoYx5JAMdJOnZTG1IvQSaKe6NZOn:r2G0pwuwasMdJOnZKVSaaNZOn
Score10/10-
XMRig Miner payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1