General
-
Target
1b446f122edda2acf1264d67b760473b952db412be688e982ecea2e3b223a952
-
Size
1.3MB
-
Sample
241111-ywqfdsylfn
-
MD5
004959f7df5fd7b8b493f33154a1de71
-
SHA1
c3e9a94af6bf5a5acba19c5342f79f02f55c4c6a
-
SHA256
1b446f122edda2acf1264d67b760473b952db412be688e982ecea2e3b223a952
-
SHA512
6822dcb01d30825c1ebd2e12788dffb6a4f901e77d5c86930225f101c91cda8e12e08a07d8ca47c0306a5b8c184d2720c64b5a09b784a50b9f010c463e103a60
-
SSDEEP
24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKensziXoSPqZ650Ggk:GezaTF8FcNkNdfE0pZ9ozttwIRReyk
Malware Config
Targets
-
-
Target
1b446f122edda2acf1264d67b760473b952db412be688e982ecea2e3b223a952
-
Size
1.3MB
-
MD5
004959f7df5fd7b8b493f33154a1de71
-
SHA1
c3e9a94af6bf5a5acba19c5342f79f02f55c4c6a
-
SHA256
1b446f122edda2acf1264d67b760473b952db412be688e982ecea2e3b223a952
-
SHA512
6822dcb01d30825c1ebd2e12788dffb6a4f901e77d5c86930225f101c91cda8e12e08a07d8ca47c0306a5b8c184d2720c64b5a09b784a50b9f010c463e103a60
-
SSDEEP
24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKensziXoSPqZ650Ggk:GezaTF8FcNkNdfE0pZ9ozttwIRReyk
Score10/10-
Xmrig family
-
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
-
XMRig Miner payload
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-