General

  • Target

    484408becf3985b65e1260eb0a619e80N.exe

  • Size

    1.2MB

  • Sample

    240803-ek648asfkp

  • MD5

    484408becf3985b65e1260eb0a619e80

  • SHA1

    148e6fb49a4b42d814e1baa804a9832f94d5ec27

  • SHA256

    7d497bbc4f3339529f78e7edb7a46e26d73de511156b851c2c2f444c82f482ca

  • SHA512

    798fedf76040a0fee8aee3bb9a7afb4960a4eff885d269aeb53755142ba4d0374eb70cb57b6255bcec8e855a560388046d2c4ca0db4a289bdc858cc11636e5f1

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYVfp1cnAfSlWhdU0nV:Lz071uv4BPMkibTIA5VDSlGnV

Malware Config

Targets

    • Target

      484408becf3985b65e1260eb0a619e80N.exe

    • Size

      1.2MB

    • MD5

      484408becf3985b65e1260eb0a619e80

    • SHA1

      148e6fb49a4b42d814e1baa804a9832f94d5ec27

    • SHA256

      7d497bbc4f3339529f78e7edb7a46e26d73de511156b851c2c2f444c82f482ca

    • SHA512

      798fedf76040a0fee8aee3bb9a7afb4960a4eff885d269aeb53755142ba4d0374eb70cb57b6255bcec8e855a560388046d2c4ca0db4a289bdc858cc11636e5f1

    • SSDEEP

      24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYVfp1cnAfSlWhdU0nV:Lz071uv4BPMkibTIA5VDSlGnV

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks