70f512b436a0795fb3ae5c5c09e4a544d43d2c50e08c2f6ca797a4898a04193f

General
Target

70f512b436a0795fb3ae5c5c09e4a544d43d2c50e08c2f6ca797a4898a04193f

Size

569KB

Sample

210504-nxbejzkpax

Score
10 /10
MD5

c85e27470e88ad0d0449ab68ef18d0a3

SHA1

4791330c3acf353772c3d073cc52a619eb4cd7cc

SHA256

70f512b436a0795fb3ae5c5c09e4a544d43d2c50e08c2f6ca797a4898a04193f

SHA512

39bdcba7169b7b78353453ebfc72a8604272433b9bf2d043a231bec175f73a11b77bc93bcb45b85207cbafcd5c50bfa61ee0bd89314229c9b21de3ce8594ab01

Malware Config
Targets
Target

70f512b436a0795fb3ae5c5c09e4a544d43d2c50e08c2f6ca797a4898a04193f

MD5

c85e27470e88ad0d0449ab68ef18d0a3

Filesize

569KB

Score
10 /10
SHA1

4791330c3acf353772c3d073cc52a619eb4cd7cc

SHA256

70f512b436a0795fb3ae5c5c09e4a544d43d2c50e08c2f6ca797a4898a04193f

SHA512

39bdcba7169b7b78353453ebfc72a8604272433b9bf2d043a231bec175f73a11b77bc93bcb45b85207cbafcd5c50bfa61ee0bd89314229c9b21de3ce8594ab01

Tags

Signatures

  • xmrig

    Description

    XMRig is a high performance, open source, cross platform CPU/GPU miner.

    Tags

  • XMRig Miner Payload

    Tags

  • Executes dropped EXE

  • Stops running service(s)

    Tags

    TTPs

    Modify Existing Service Service Stop
  • Loads dropped DLL

  • Adds Run key to start application

    Tags

    TTPs

    Registry Run Keys / Startup Folder Modify Registry

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
        Execution
          Exfiltration
            Impact
            Initial Access
              Lateral Movement
                Privilege Escalation
                  Tasks

                  static1

                  behavioral1

                  10/10

                  behavioral2

                  10/10