Overview

overview

10

Static

static

8

b49318a8_b...is.exe

windows7_x64

10

b49318a8_b...is.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b49318a8_by_Libranalysis

  • Size

    2.4MB

  • Sample

    210505-nyetdee4e6

  • MD5

    b49318a8b525aa54240f56e25056fc71

  • SHA1

    154d4646f8f125eea910f137bb2608a4e35159f6

  • SHA256

    7c9853c7416f5e21d7eae2616a5dd29412563255a9fb1fe043abb70a06697dbf

  • SHA512

    21de3744c932b44db7718f44143a498efca642056bfb1237361d00c4042bdb863f04f5659c1a334dae7f09c1a6a81492dfb91870988009ee0079e3dbedb1835f

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      b49318a8_by_Libranalysis

    • Size

      2.4MB

    • MD5

      b49318a8b525aa54240f56e25056fc71

    • SHA1

      154d4646f8f125eea910f137bb2608a4e35159f6

    • SHA256

      7c9853c7416f5e21d7eae2616a5dd29412563255a9fb1fe043abb70a06697dbf

    • SHA512

      21de3744c932b44db7718f44143a498efca642056bfb1237361d00c4042bdb863f04f5659c1a334dae7f09c1a6a81492dfb91870988009ee0079e3dbedb1835f

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • Blocklisted process makes network request

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks