General
-
Target
2025-06-02_0292fc1078b69c0116aff0808062e3aa_akira_black-basta_cobalt-strike_coinminer_darkgate_hijackloader
-
Size
14.7MB
-
Sample
250602-qdcsksfn4z
-
MD5
0292fc1078b69c0116aff0808062e3aa
-
SHA1
6bd9d473bad58bb73c806263299ee161a8ac4d1e
-
SHA256
6678c65cef52217fab3cd1db02f545dd21a9a46e7374f620406a6afc04138544
-
SHA512
c904065feea26c067ffbb656dd1cb331383b0a4102a1cc0fda4258d1df0eb484d2731389c953d68809c6a48166603ff4f56bf6d7413afaf7e3c22e2776ed5049
-
SSDEEP
393216:7XDGV1wloNXe4uFw7V4vAvTnmAZDZjlsp:7ipZDZjc
Behavioral task
behavioral1
Sample
2025-06-02_0292fc1078b69c0116aff0808062e3aa_akira_black-basta_cobalt-strike_coinminer_darkgate_hijackloader.exe
Resource
win10v2004-20250502-en
Malware Config
Targets
-
-
Target
2025-06-02_0292fc1078b69c0116aff0808062e3aa_akira_black-basta_cobalt-strike_coinminer_darkgate_hijackloader
-
Size
14.7MB
-
MD5
0292fc1078b69c0116aff0808062e3aa
-
SHA1
6bd9d473bad58bb73c806263299ee161a8ac4d1e
-
SHA256
6678c65cef52217fab3cd1db02f545dd21a9a46e7374f620406a6afc04138544
-
SHA512
c904065feea26c067ffbb656dd1cb331383b0a4102a1cc0fda4258d1df0eb484d2731389c953d68809c6a48166603ff4f56bf6d7413afaf7e3c22e2776ed5049
-
SSDEEP
393216:7XDGV1wloNXe4uFw7V4vAvTnmAZDZjlsp:7ipZDZjc
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-