Resubmissions

14-06-2024 17:49

240614-wdz6rsthrm 10

General

  • Target

    679bc0ce54f81a8899cb5c64a7c6f10b.exe

  • Size

    9.0MB

  • Sample

    240614-wdz6rsthrm

  • MD5

    679bc0ce54f81a8899cb5c64a7c6f10b

  • SHA1

    93d23ae82e04defc7ceadafe2e5106e636be61dd

  • SHA256

    77bfcc49e879f4c7b3ab170d65599ac49c4eb40a96228449d45e3cde428f9b71

  • SHA512

    e13c02fb634942dabfeb44af5503487fa1ecf81c9ce75d0714ae144c39e49a666b871dead10739b433ec576ac6e34a03727b35f3ba157fd82fc22c600650367f

  • SSDEEP

    196608:rhHMBGC3PtXtT+Was8Ewq1wo9JoYx5JAMdJOnZTG1IvQSaKe6NZOn:r2G0pwuwasMdJOnZKVSaaNZOn

Malware Config

Targets

    • Target

      679bc0ce54f81a8899cb5c64a7c6f10b.exe

    • Size

      9.0MB

    • MD5

      679bc0ce54f81a8899cb5c64a7c6f10b

    • SHA1

      93d23ae82e04defc7ceadafe2e5106e636be61dd

    • SHA256

      77bfcc49e879f4c7b3ab170d65599ac49c4eb40a96228449d45e3cde428f9b71

    • SHA512

      e13c02fb634942dabfeb44af5503487fa1ecf81c9ce75d0714ae144c39e49a666b871dead10739b433ec576ac6e34a03727b35f3ba157fd82fc22c600650367f

    • SSDEEP

      196608:rhHMBGC3PtXtT+Was8Ewq1wo9JoYx5JAMdJOnZTG1IvQSaKe6NZOn:r2G0pwuwasMdJOnZKVSaaNZOn

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks