Overview

overview

10

Static

static

3

4543499b6e...dN.exe

windows7-x64

10

4543499b6e...dN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4543499b6e5a195abecbfbb8b2d00227fe6fe3932c22c535f49fe0e9b0d2158dN.exe

  • Size

    2.8MB

  • Sample

    241120-fyg8pawphk

  • MD5

    696933093026a17b449aad7f37c53f50

  • SHA1

    e76ea1f3b5f5b6c6fcdd6a1e75be1b2ee586188e

  • SHA256

    4543499b6e5a195abecbfbb8b2d00227fe6fe3932c22c535f49fe0e9b0d2158d

  • SHA512

    db13f7aac7089701757dff507f4670e64de264637bfae549397838db4b1e5020bafbdeea154b798a01e64a8eecbabdc37e45505ddadf36cfa832a5ea258fdcd8

  • SSDEEP

    49152:hYnbuqL/W+N5ql4Ix+I410WhPP+a/SLAY0c4PFqwXuqT75VSU8rL/FyVbfUfe:hYnfL/W+NUl4Ix+IKHv/S0Y0nqcN8rrQ

Score
10/10
xmrigdiscoveryminer

Malware Config

Targets

    • Target

      4543499b6e5a195abecbfbb8b2d00227fe6fe3932c22c535f49fe0e9b0d2158dN.exe

    • Size

      2.8MB

    • MD5

      696933093026a17b449aad7f37c53f50

    • SHA1

      e76ea1f3b5f5b6c6fcdd6a1e75be1b2ee586188e

    • SHA256

      4543499b6e5a195abecbfbb8b2d00227fe6fe3932c22c535f49fe0e9b0d2158d

    • SHA512

      db13f7aac7089701757dff507f4670e64de264637bfae549397838db4b1e5020bafbdeea154b798a01e64a8eecbabdc37e45505ddadf36cfa832a5ea258fdcd8

    • SSDEEP

      49152:hYnbuqL/W+N5ql4Ix+I410WhPP+a/SLAY0c4PFqwXuqT75VSU8rL/FyVbfUfe:hYnfL/W+NUl4Ix+IKHv/S0Y0nqcN8rrQ

    Score
    10/10
    xmrigdiscoveryminer

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks