Malware Analysis Report

2025-01-18 04:56

Sample ID 241126-b91rysxpd1
Target 956c935544468d873efc65ff575cd9129762cd589b1289284ed57a64b6d4f602
SHA256 956c935544468d873efc65ff575cd9129762cd589b1289284ed57a64b6d4f602
Tags
miner zeppelin masslogger mountlocker xmrig
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis Overview

score
10/10

SHA256

956c935544468d873efc65ff575cd9129762cd589b1289284ed57a64b6d4f602

Threat Level: Known bad

The file 956c935544468d873efc65ff575cd9129762cd589b1289284ed57a64b6d4f602 was found to be: Known bad.

Malicious Activity Summary

miner zeppelin masslogger mountlocker xmrig

Masslogger family

Mountlocker family

XMRig Miner payload

Xmrig family

Zeppelin family

Detected Mount Locker ransomware

Detects Zeppelin payload

MassLogger log file

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-11-26 01:51

Signatures

Detected Mount Locker ransomware

Description Indicator Process Target
N/A N/A N/A N/A

Detects Zeppelin payload

Description Indicator Process Target
N/A N/A N/A N/A

MassLogger log file

Description Indicator Process Target
N/A N/A N/A N/A

Masslogger family

masslogger

Mountlocker family

mountlocker

XMRig Miner payload

miner
Description Indicator Process Target
N/A N/A N/A N/A

Xmrig family

xmrig

Zeppelin family

zeppelin