Comment
Author: Admin | 2025-04-27
Add for printingURL: Full analysis: https://app.any.run/tasks/9a378e22-ce94-492b-acfc-27421c104b61 Verdict: Malicious activity Threats: Crypto mining malware is a resource-intensive threat that infiltrates computers with the purpose of mining cryptocurrencies. This type of threat can be deployed either on an infected machine or a compromised website. In both cases the miner will utilize the computing power of the device and its network bandwidth.Malware Trends Tracker >>> Analysis date: July 22, 2022, 10:07:50 OS: Windows 7 Professional Service Pack 1 (build: 7601, 32 bit) Tags: miner Indicators: MD5: 9FA8134456CD58CE93644971A9C8553CSHA1: 501773875AFA91FD4400FF88F8240F1CC3C16511SHA256: 8FFA62C65E99C41A019562D12313D8828091E6BEE908050185284C4B2552E050SSDEEP: 3:N8tEd8MkMAHXoeAJArBJMkCUewTjU+tMV:2uCM63oeAJArBJM6DjU2MVANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content. Add for printingMALICIOUSDrops executable file immediately after startsWinRAR.exe (PID: 620)firefox.exe (PID: 3192)SUSPICIOUSReads the computer nameWinRAR.exe (PID: 620)Executable content was dropped or overwrittenWinRAR.exe (PID: 620)firefox.exe (PID: 3192)Drops a file with a compile date too recentWinRAR.exe (PID: 620)firefox.exe (PID: 3192)Checks supported languagesWinRAR.exe (PID: 620)cmd.exe (PID: 2036)cmd.exe (PID: 1144)cmd.exe (PID: 3456)cmd.exe (PID: 2540)cmd.exe (PID: 2696)cmd.exe (PID: 536)cmd.exe (PID: 3952)cmd.exe (PID: 3500)cmd.exe (PID: 2328)cmd.exe (PID: 2764)cmd.exe (PID: 3936)cmd.exe (PID: 2460)cmd.exe (PID: 3740)cmd.exe (PID: 2440)cmd.exe (PID: 560)cmd.exe (PID: 568)cmd.exe (PID: 2956)cmd.exe (PID: 812)cmd.exe (PID: 3768)cmd.exe (PID: 1848)cmd.exe (PID: 2012)cmd.exe (PID: 3412)cmd.exe (PID: 1856)cmd.exe (PID: 2932)Dropped object may contain URLs of mainers poolsWinRAR.exe (PID: 620)Starts CMD.EXE for commands executionWinRAR.exe (PID: 620)cmd.exe (PID: 2036)cmd.exe (PID: 2696)cmd.exe (PID: 3456)cmd.exe (PID: 2328)cmd.exe (PID: 3936)cmd.exe (PID: 2440)cmd.exe (PID: 2956)cmd.exe (PID: 812)Application launched itselfcmd.exe (PID: 2696)cmd.exe (PID: 2036)cmd.exe (PID: 3456)cmd.exe (PID: 2328)cmd.exe (PID: 2440)cmd.exe (PID: 3936)cmd.exe (PID: 812)cmd.exe (PID: 2956)INFOReads CPU infofirefox.exe (PID: 3192)Checks supported languagesfirefox.exe (PID: 2348)firefox.exe (PID: 3192)firefox.exe (PID: 2556)firefox.exe (PID: 3724)firefox.exe (PID: 1952)firefox.exe (PID: 2880)firefox.exe (PID: 2264)NOTEPAD.EXE (PID: 2712)setx.exe (PID: 2660)setx.exe (PID: 2956)setx.exe (PID: 3740)setx.exe (PID: 920)setx.exe (PID: 3736)Reads the
Add Comment