General

  • Target

    taskhost.exe

  • Size

    2.8MB

  • Sample

    210505-mf4r5y9bdj

  • MD5

    7f6b8e103f0a42615d90a2b7ad862135

  • SHA1

    095d2bef8afc9a657cb0dfbe9e95ae467a7364d0

  • SHA256

    51edeab1acc8739d6e419b59c1ea6c1e1a8e783d1a3852729b35781ddb008639

  • SHA512

    b058baa67cce6631bb4937b8df81ac42fbe2955c1c43723b136a74378dece449dcd50d0c7ea3d2b9817939e1126767c3935d12dde7863edcb66d1bd56675ca83

Score
10/10

Malware Config

Targets

    • Target

      taskhost.exe

    • Size

      2.8MB

    • MD5

      7f6b8e103f0a42615d90a2b7ad862135

    • SHA1

      095d2bef8afc9a657cb0dfbe9e95ae467a7364d0

    • SHA256

      51edeab1acc8739d6e419b59c1ea6c1e1a8e783d1a3852729b35781ddb008639

    • SHA512

      b058baa67cce6631bb4937b8df81ac42fbe2955c1c43723b136a74378dece449dcd50d0c7ea3d2b9817939e1126767c3935d12dde7863edcb66d1bd56675ca83

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner Payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops startup file

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks