xmrig | 90e4fd2f0792a3068a2048c3dd0fd42e1f7e4da082d76cbe52989757a4a987d5 | Triage

Submit
Reports

Overview

overview

Static

static

5

386382628b...a5.exe

windows7_x64

386382628b...a5.exe

windows10_x64

Sharing

General

Target

386382628bdab18db3b929a566756da5
Size

15.9MB
Sample

211016-rvqanscghn
MD5

386382628bdab18db3b929a566756da5
SHA1

fcd17baf5894cede249211bab735f97d8f6b5770
SHA256

90e4fd2f0792a3068a2048c3dd0fd42e1f7e4da082d76cbe52989757a4a987d5
SHA512

8916ea2666d16430c26b55fd11f0195a96f352f79cc884029b380f8001cf46f1aa0a9b86d36d8dbc15f39c95b163301546ccbafcde3bedd78ae5267063f52a05

Score

10^/10

xmrig miner suricata

Static task

static1

Behavioral task

behavioral1

Sample

386382628bdab18db3b929a566756da5.exe

Resource

win7-en-20211014

xmrig miner suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

386382628bdab18db3b929a566756da5.exe

Resource

win10-en-20210920

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  386382628bdab18db3b929a566756da5
- Size
  
  15.9MB
- MD5
  
  386382628bdab18db3b929a566756da5
- SHA1
  
  fcd17baf5894cede249211bab735f97d8f6b5770
- SHA256
  
  90e4fd2f0792a3068a2048c3dd0fd42e1f7e4da082d76cbe52989757a4a987d5
- SHA512
  
  8916ea2666d16430c26b55fd11f0195a96f352f79cc884029b380f8001cf46f1aa0a9b86d36d8dbc15f39c95b163301546ccbafcde3bedd78ae5267063f52a05
Score

10^/10

xmrig miner suricata
- suricata: ET MALWARE Win32/MOOZ.THCCABO CoinMiner CnC Checkin
  suricata: ET MALWARE Win32/MOOZ.THCCABO CoinMiner CnC Checkin
  suricata
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- Detected Stratum cryptominer command
  Looks to be attempting to contact Stratum mining pool.
  miner
- XMRig Miner Payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
- autoit_exe
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Hidden Files and Directories

Privilege Escalation

Scheduled Task

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

xmrigminersuricata

behavioral2

© 2018-2024

Terms | Privacy