Overview

overview

10

Static

static

5

a8b0d10411...9e.exe

windows7_x64

10

a8b0d10411...9e.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a8b0d10411128eed3639151d13b751fa00c861730659ed8ce5666c12f5a3f29e

  • Size

    5.5MB

  • Sample

    210628-f6hrk2eym6

  • MD5

    f14166e86503be1ec472ce387436c811

  • SHA1

    940a57cb6b963666ac84294c7f0b7c41a3834fd2

  • SHA256

    a8b0d10411128eed3639151d13b751fa00c861730659ed8ce5666c12f5a3f29e

  • SHA512

    9aecfcaf17399604aada71fa56cd2d12077fe564896ce927f9562819da893caca4a46efda747c59917c1b6141001275e6e5825d55ff70a656c29ef1c6480d910

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      a8b0d10411128eed3639151d13b751fa00c861730659ed8ce5666c12f5a3f29e

    • Size

      5.5MB

    • MD5

      f14166e86503be1ec472ce387436c811

    • SHA1

      940a57cb6b963666ac84294c7f0b7c41a3834fd2

    • SHA256

      a8b0d10411128eed3639151d13b751fa00c861730659ed8ce5666c12f5a3f29e

    • SHA512

      9aecfcaf17399604aada71fa56cd2d12077fe564896ce927f9562819da893caca4a46efda747c59917c1b6141001275e6e5825d55ff70a656c29ef1c6480d910

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner Payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • autoit_exe

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks