f95cb76a09441b4e542f5403c9a82c1d57ed0c81e8fc1826d468c3894f38d3ae

Target

hellminerPRO.rar
Size

18.8MB
Sample

241006-q6e4eaxcln
MD5

7cb0fe5428ad8a456d6a54c4d59b3602
SHA1

bcb20a022fa6308b4f13787f4a2d539b7e7ae296
SHA256

f95cb76a09441b4e542f5403c9a82c1d57ed0c81e8fc1826d468c3894f38d3ae
SHA512

cac6dfea24be5361fd0e3edd58c087b97ef96e4ef7aa464e3c52b4b974325200864f1c4c6407e431323e7ae311be88d7940bbc7ae2649e63e7e0c8b525151fdf
SSDEEP

393216:6ZX0Bt6iJDVWfnBo/cYaK35Vby40ZUP1g7MRT+NcMN5EoVegQx:6dCtjJpeBKdam5Vby4oK1oMRCvusox

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  hellminer_win64/hellminer.exe
- Size
  
  18.9MB
- MD5
  
  b7918613de76fc795f1410f2e1073f6e
- SHA1
  
  cb4357229f6506557db0a10a15cc7b3bfda9987e
- SHA256
  
  de1e4b30fc56292af56c3efb280e3789545fde702f0d2d51501d96f855ab90e4
- SHA512
  
  37f41196e57624b3e3745349b6ba381f6ef876946cb8b58d0c287244a88d97b73b5ae417bedfde2eb9d42fd9209aa40182acbd4b082d3ea9b70fd8b24135a702
- SSDEEP
  
  393216:AOCyEnSyY+k4tO2dQ2lH/m3pJ+9JPn4M4B25dld5nx:AOCyEY4tndQ0KA9Jv4wdn
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  hellminer_win64/mining scall - Copie (10).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral3 behavioral4
- Target
  
  hellminer_win64/mining scall - Copie (11).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral5 behavioral6
- Target
  
  hellminer_win64/mining scall - Copie (12).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral7 behavioral8
- Target
  
  hellminer_win64/mining scall - Copie (13).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral10 behavioral9
- Target
  
  hellminer_win64/mining scall - Copie (14).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral11 behavioral12
- Target
  
  hellminer_win64/mining scall - Copie (15).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral13 behavioral14
- Target
  
  hellminer_win64/mining scall - Copie (16).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral15 behavioral16
- Target
  
  hellminer_win64/mining scall - Copie (17).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral17 behavioral18
- Target
  
  hellminer_win64/mining scall - Copie (18).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral19 behavioral20
- Target
  
  hellminer_win64/mining scall - Copie (19).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral21 behavioral22
- Target
  
  hellminer_win64/mining scall - Copie (2).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral23 behavioral24
- Target
  
  hellminer_win64/mining scall - Copie (20).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral25 behavioral26
- Target
  
  hellminer_win64/mining scall - Copie (21).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral27 behavioral28
- Target
  
  hellminer_win64/mining scall - Copie (3).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral29 behavioral30
- Target
  
  hellminer_win64/mining scall - Copie (4).bat
- Size
  
  103B
- MD5
  
  ffc337b7e0abc99d25b115c1cfda4d8e
- SHA1
  
  16ea2a287fbce134a0ad3fdf4529c611829407bf
- SHA256
  
  95af3604e348fff77415e5dbafcd085fd05d94838567a193d0cfa4b9700a2319
- SHA512
  
  cc7582878812438019c0b0959276a325b175663161280080f789fa9416af1382e5d78a91d1b126e6b8811f8af4a4f114f14289fe0c4f8547bfdbbde79d97b6ae
Score

7^/10
- Loads dropped DLL
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32