342ef4f2941187bdc7f66d148be0ff75

General
Target

342ef4f2941187bdc7f66d148be0ff75

Size

2MB

Sample

211014-fskfvsgcb8

Score
10 /10
MD5

342ef4f2941187bdc7f66d148be0ff75

SHA1

7ff601a24c42ec01ef62c097927688a431c5aa76

SHA256

046976da5783b0425976084bc16ababee1094e98a1f0648fc10c91dcf49bc395

SHA512

84d9c5c7b83481e18efeecf8814bd050fd283dc1408a9a02fdc786ae2f8f08355ff87e24ab47a75e08291f0d75e8ae6747bb247e6a8859e8662d1999454605b2

Malware Config
Targets
Target

342ef4f2941187bdc7f66d148be0ff75

MD5

342ef4f2941187bdc7f66d148be0ff75

Filesize

2MB

Score
10 /10
SHA1

7ff601a24c42ec01ef62c097927688a431c5aa76

SHA256

046976da5783b0425976084bc16ababee1094e98a1f0648fc10c91dcf49bc395

SHA512

84d9c5c7b83481e18efeecf8814bd050fd283dc1408a9a02fdc786ae2f8f08355ff87e24ab47a75e08291f0d75e8ae6747bb247e6a8859e8662d1999454605b2

Tags

Signatures

  • xmrig

    Description

    XMRig is a high performance, open source, cross platform CPU/GPU miner.

    Tags

  • XMRig Miner Payload

    Tags

  • Blocklisted process makes network request

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  • Suspicious use of SetThreadContext

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        behavioral1

                        10/10

                        behavioral2

                        10/10