General
-
Target
22289a61cd8a347a03da845d34820534b3e617781447a91c6a0fb3b1e6f6a184.exe
-
Size
2.9MB
-
Sample
240821-lxhqqawanq
-
MD5
b3fc214094fbc7d1542542fd86d23963
-
SHA1
50f97ed0a4719a75ef7bd31c38a829ec0d155e92
-
SHA256
22289a61cd8a347a03da845d34820534b3e617781447a91c6a0fb3b1e6f6a184
-
SHA512
070ba8b6a5f6a89915f4516434b23e77b60e5a1ba87f251754ecbbd3b2616ec5de3a3939ab480ab471fb42ce82c11bdb1b51b3f6391e9ce0328c40a7b88593b1
-
SSDEEP
49152:SGCL+RB7rH7cRsZPAEXl6PxJt3rMYS3Usa5Lcq/CqjJxQA5VMvPV3/SdLS:TCU3H7lZoEXl+ft7MYSoLN/CCxQA5VsV
Malware Config
Targets
-
-
Target
22289a61cd8a347a03da845d34820534b3e617781447a91c6a0fb3b1e6f6a184.exe
-
Size
2.9MB
-
MD5
b3fc214094fbc7d1542542fd86d23963
-
SHA1
50f97ed0a4719a75ef7bd31c38a829ec0d155e92
-
SHA256
22289a61cd8a347a03da845d34820534b3e617781447a91c6a0fb3b1e6f6a184
-
SHA512
070ba8b6a5f6a89915f4516434b23e77b60e5a1ba87f251754ecbbd3b2616ec5de3a3939ab480ab471fb42ce82c11bdb1b51b3f6391e9ce0328c40a7b88593b1
-
SSDEEP
49152:SGCL+RB7rH7cRsZPAEXl6PxJt3rMYS3Usa5Lcq/CqjJxQA5VMvPV3/SdLS:TCU3H7lZoEXl+ft7MYSoLN/CCxQA5VsV
Score10/10-
Disables service(s)
-
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
-
XMRig Miner payload
-
Stops running service(s)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-