xmrig | 7956c560089cff421c7a42e938a9b201fce19ee3e49e838830ff617c5f086e6f | Triage

Submit
Reports

Overview

overview

Static

static

7956c56008...6f.exe

windows7_x64

8

7956c56008...6f.exe

windows10_x64

Sharing

General

Target

7956c560089cff421c7a42e938a9b201fce19ee3e49e838830ff617c5f086e6f
Size

1.3MB
Sample

210515-ddb9dm1rj6
MD5

88d04b3febf3b70729c7be9b15d11e64
SHA1

dd426e9ae5621b0c423c9976dae16ac8168251a1
SHA256

7956c560089cff421c7a42e938a9b201fce19ee3e49e838830ff617c5f086e6f
SHA512

17284285db266f4dfb01370f35d10af054af1e9fe551a3123c803aee9279740b7297d799c7d8264f3fec46e8fc5ae0bf48f4e9ed36f6a2faf424a960c30af073

Score

10^/10

xmrig adware miner persistence stealer upx

Static task

static1

Behavioral task

behavioral1

Sample

7956c560089cff421c7a42e938a9b201fce19ee3e49e838830ff617c5f086e6f.exe

Resource

win7v20210410

adware persistence stealer upx

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

7956c560089cff421c7a42e938a9b201fce19ee3e49e838830ff617c5f086e6f.exe

Resource

win10v20210410

xmrig adware miner persistence stealer upx

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  7956c560089cff421c7a42e938a9b201fce19ee3e49e838830ff617c5f086e6f
- Size
  
  1.3MB
- MD5
  
  88d04b3febf3b70729c7be9b15d11e64
- SHA1
  
  dd426e9ae5621b0c423c9976dae16ac8168251a1
- SHA256
  
  7956c560089cff421c7a42e938a9b201fce19ee3e49e838830ff617c5f086e6f
- SHA512
  
  17284285db266f4dfb01370f35d10af054af1e9fe551a3123c803aee9279740b7297d799c7d8264f3fec46e8fc5ae0bf48f4e9ed36f6a2faf424a960c30af073
Score

10^/10

adware persistence stealer upx xmrig miner
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

adwarepersistencestealerupx

behavioral2

xmrigadwareminerpersistencestealerupx

© 2018-2024

Terms | Privacy