General

  • Target

    902d3af7b41a2a66ae4ab6d2d44dd0f1b5087b2899f929493572bf52d5fe0f25N

  • Size

    1.3MB

  • Sample

    241110-h63kpsseph

  • MD5

    bab68c352e52b37e3ad3ec62eb735930

  • SHA1

    9f89c13d4d566d84c1d6bd4c2025844a25c74f2f

  • SHA256

    902d3af7b41a2a66ae4ab6d2d44dd0f1b5087b2899f929493572bf52d5fe0f25

  • SHA512

    d03d1bc40fc69aa244e04196a8b00eb767a429c1b15c4e85ca1f727c55684f1bcc2c960ec03f97068920f25ce4486547e0686db6d33e9e7f74656b8d7957fee0

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYMYkWvUmPBLl+lk6OTlAHj:Lz071uv4BPMkibTIA5BBMm5wiu

Malware Config

Targets

    • Target

      902d3af7b41a2a66ae4ab6d2d44dd0f1b5087b2899f929493572bf52d5fe0f25N

    • Size

      1.3MB

    • MD5

      bab68c352e52b37e3ad3ec62eb735930

    • SHA1

      9f89c13d4d566d84c1d6bd4c2025844a25c74f2f

    • SHA256

      902d3af7b41a2a66ae4ab6d2d44dd0f1b5087b2899f929493572bf52d5fe0f25

    • SHA512

      d03d1bc40fc69aa244e04196a8b00eb767a429c1b15c4e85ca1f727c55684f1bcc2c960ec03f97068920f25ce4486547e0686db6d33e9e7f74656b8d7957fee0

    • SSDEEP

      24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYMYkWvUmPBLl+lk6OTlAHj:Lz071uv4BPMkibTIA5BBMm5wiu

    • Xmrig family

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks