Overview

overview

10

Static

static

file3.exe

windows7_x64

10

file3.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file3.exe

  • Size

    4.4MB

  • Sample

    210429-2987cflqt6

  • MD5

    85916ca32ad6adf4bcc68318fcfe1722

  • SHA1

    e58a67d48b79cc828e31121f5c3ed2b06ebd4f85

  • SHA256

    3e3a2350cc65c94f1139adf4229a5d1a0c0fdd7aa79c5ba8612011e2a5113b0f

  • SHA512

    db3e042b77f5f4b5e1b83dac49f24e1159552c7a7207ab2897e44bcb58875dc87a84257ef3ca95606c565d7baaa55db67f36f47d8adcfb8b4aa9d5aa522dfb90

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      file3.exe

    • Size

      4.4MB

    • MD5

      85916ca32ad6adf4bcc68318fcfe1722

    • SHA1

      e58a67d48b79cc828e31121f5c3ed2b06ebd4f85

    • SHA256

      3e3a2350cc65c94f1139adf4229a5d1a0c0fdd7aa79c5ba8612011e2a5113b0f

    • SHA512

      db3e042b77f5f4b5e1b83dac49f24e1159552c7a7207ab2897e44bcb58875dc87a84257ef3ca95606c565d7baaa55db67f36f47d8adcfb8b4aa9d5aa522dfb90

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner Payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks