Overview

overview

10

Static

static

10

a349cf5b50...0N.exe

windows7-x64

10

a349cf5b50...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a349cf5b5025be82eb948d1e243c92f0N.exe

  • Size

    1.6MB

  • Sample

    240721-ldxqjazbqj

  • MD5

    a349cf5b5025be82eb948d1e243c92f0

  • SHA1

    5f0d391fde3b906cc9adcf932318f3cbb9f5c5d5

  • SHA256

    198c2718ff182e09140dae7fb6e5d23e0a35e2775333e14deb401443754128b2

  • SHA512

    e622005b8b3f4576680c9eef1a0ad1db3c979f2095a2ad93a5535e36475ad53c1026c2fcee46355e46304c4c100cf8321b1d83df3d53e576b07d5b23e2a62685

  • SSDEEP

    49152:Lz071uv4BPMkyW10/wKV7hjSe5CtAlM22e:NABa

Score
10/10
xmrigexecutionminerupx

Malware Config

Targets

    • Target

      a349cf5b5025be82eb948d1e243c92f0N.exe

    • Size

      1.6MB

    • MD5

      a349cf5b5025be82eb948d1e243c92f0

    • SHA1

      5f0d391fde3b906cc9adcf932318f3cbb9f5c5d5

    • SHA256

      198c2718ff182e09140dae7fb6e5d23e0a35e2775333e14deb401443754128b2

    • SHA512

      e622005b8b3f4576680c9eef1a0ad1db3c979f2095a2ad93a5535e36475ad53c1026c2fcee46355e46304c4c100cf8321b1d83df3d53e576b07d5b23e2a62685

    • SSDEEP

      49152:Lz071uv4BPMkyW10/wKV7hjSe5CtAlM22e:NABa

    Score
    10/10
    xmrigexecutionminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

      execution

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks