xmrig | 9ee039d905606d5d35b763872c16665fcb7781f988ae21df88dbac23f2dc6056 | Triage

Submit
Reports

Overview

overview

Static

static

5.exe

windows7_x64

1

5.exe

windows10_x64

Sharing

General

Target

5.exe
Size

579KB
Sample

210226-g2av6w53xa
MD5

4f62b39ba4defb592856eb96f4dae6a5
SHA1

a660f418c6ce839376df337ccf8636d03a3e6072
SHA256

9ee039d905606d5d35b763872c16665fcb7781f988ae21df88dbac23f2dc6056
SHA512

4bc7ea43cac07aa56ab47606605908f82b31f7a6d48e378429ed955159bc41bf9987e2fc8f3bee5259fa321bfd93515947846ded047c86bc95baec2cbd8cc555

Score

10^/10

xmrig discovery evasion miner upx

Static task

static1

Behavioral task

behavioral1

Sample

5.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5.exe

Resource

win10v20201028

xmrig discovery evasion miner upx

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  5.exe
- Size
  
  579KB
- MD5
  
  4f62b39ba4defb592856eb96f4dae6a5
- SHA1
  
  a660f418c6ce839376df337ccf8636d03a3e6072
- SHA256
  
  9ee039d905606d5d35b763872c16665fcb7781f988ae21df88dbac23f2dc6056
- SHA512
  
  4bc7ea43cac07aa56ab47606605908f82b31f7a6d48e378429ed955159bc41bf9987e2fc8f3bee5259fa321bfd93515947846ded047c86bc95baec2cbd8cc555
Score

10^/10

xmrig discovery evasion miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner Payload
  miner
- Blocklisted process makes network request
- Executes dropped EXE
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Modifies file permissions
  discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Hidden Files and Directories

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Hidden Files and Directories

File Permissions Modification

Install Root Certificate

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

behavioral2

xmrigdiscoveryevasionminerupx

© 2018-2024

Terms | Privacy