xmrig | 03102d3990eb5b95d5eabf404b7e402c220d28a872ea6313a0efd569e51106df | Triage

Submit
Reports

Overview

overview

Static

static

03102d3990...df.exe

windows7_x64

03102d3990...df.exe

windows10_x64

Resubmissions

28-04-2021 17:22

210428-ldbfwp8eyn 10

Sharing

General

Target

03102d3990eb5b95d5eabf404b7e402c220d28a872ea6313a0efd569e51106df
Size

1.9MB
Sample

210428-ldbfwp8eyn
MD5

0910408b9a9ef7004fe364af27fac7d3
SHA1

1ecdd1ba7ef7050953912c19f39ba9db33d8e20e
SHA256

03102d3990eb5b95d5eabf404b7e402c220d28a872ea6313a0efd569e51106df
SHA512

4e2b1dc382a6649e5482ca586d8156941af7dbc6a286473eac5bdcf896767cdb8f8d85edc0ed62cea93113dc62243e006a34bc76ce928c9e06a9e322470c9f60

Score

10^/10

xmrig miner persistence

Static task

static1

Behavioral task

behavioral1

Sample

03102d3990eb5b95d5eabf404b7e402c220d28a872ea6313a0efd569e51106df.exe

Resource

win7v20210410

xmrig miner persistence

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

03102d3990eb5b95d5eabf404b7e402c220d28a872ea6313a0efd569e51106df.exe

Resource

win10v20210410

xmrig miner persistence

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  03102d3990eb5b95d5eabf404b7e402c220d28a872ea6313a0efd569e51106df
- Size
  
  1.9MB
- MD5
  
  0910408b9a9ef7004fe364af27fac7d3
- SHA1
  
  1ecdd1ba7ef7050953912c19f39ba9db33d8e20e
- SHA256
  
  03102d3990eb5b95d5eabf404b7e402c220d28a872ea6313a0efd569e51106df
- SHA512
  
  4e2b1dc382a6649e5482ca586d8156941af7dbc6a286473eac5bdcf896767cdb8f8d85edc0ed62cea93113dc62243e006a34bc76ce928c9e06a9e322470c9f60
Score

10^/10

xmrig miner persistence
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner Payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

xmrigminerpersistence

behavioral2

xmrigminerpersistence

© 2018-2024

Terms | Privacy