General

  • Target

    2025-06-02_0292fc1078b69c0116aff0808062e3aa_akira_black-basta_cobalt-strike_coinminer_darkgate_hijackloader

  • Size

    14.7MB

  • Sample

    250602-qdcsksfn4z

  • MD5

    0292fc1078b69c0116aff0808062e3aa

  • SHA1

    6bd9d473bad58bb73c806263299ee161a8ac4d1e

  • SHA256

    6678c65cef52217fab3cd1db02f545dd21a9a46e7374f620406a6afc04138544

  • SHA512

    c904065feea26c067ffbb656dd1cb331383b0a4102a1cc0fda4258d1df0eb484d2731389c953d68809c6a48166603ff4f56bf6d7413afaf7e3c22e2776ed5049

  • SSDEEP

    393216:7XDGV1wloNXe4uFw7V4vAvTnmAZDZjlsp:7ipZDZjc

Score
10/10

Malware Config

Targets

    • Target

      2025-06-02_0292fc1078b69c0116aff0808062e3aa_akira_black-basta_cobalt-strike_coinminer_darkgate_hijackloader

    • Size

      14.7MB

    • MD5

      0292fc1078b69c0116aff0808062e3aa

    • SHA1

      6bd9d473bad58bb73c806263299ee161a8ac4d1e

    • SHA256

      6678c65cef52217fab3cd1db02f545dd21a9a46e7374f620406a6afc04138544

    • SHA512

      c904065feea26c067ffbb656dd1cb331383b0a4102a1cc0fda4258d1df0eb484d2731389c953d68809c6a48166603ff4f56bf6d7413afaf7e3c22e2776ed5049

    • SSDEEP

      393216:7XDGV1wloNXe4uFw7V4vAvTnmAZDZjlsp:7ipZDZjc

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v16

Tasks