General

  • Target

    a2cdde74a48fe2ada97836db93e872a0N.exe

  • Size

    1.7MB

  • Sample

    240805-sbrj3atbrb

  • MD5

    a2cdde74a48fe2ada97836db93e872a0

  • SHA1

    f7cebe6bd46bd59a84a5a474ef40e4f967399ae6

  • SHA256

    d80293d941468e66e1091d6c7aea664dd88d23cb1e0c18432f2fdb22dcd0bfde

  • SHA512

    6608021407d6b3e49cd159531125e3991893fa96c5a4b7ce47f0b4e046f8ce400fc433d499fc170e50dead28392433e4a84fed737dbce12200ec23fd8d0ca228

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5I4TNrpDGsNtqnjR:NAB3

Malware Config

Targets

    • Target

      a2cdde74a48fe2ada97836db93e872a0N.exe

    • Size

      1.7MB

    • MD5

      a2cdde74a48fe2ada97836db93e872a0

    • SHA1

      f7cebe6bd46bd59a84a5a474ef40e4f967399ae6

    • SHA256

      d80293d941468e66e1091d6c7aea664dd88d23cb1e0c18432f2fdb22dcd0bfde

    • SHA512

      6608021407d6b3e49cd159531125e3991893fa96c5a4b7ce47f0b4e046f8ce400fc433d499fc170e50dead28392433e4a84fed737dbce12200ec23fd8d0ca228

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5I4TNrpDGsNtqnjR:NAB3

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks