Overview

overview

10

Static

static

dridex

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5db7ad7b3b345ecb7da30349183fafaf4a7bbd4e566e4d7ea4c0e6d895d983d2

  • Size

    3.2MB

  • Sample

    211023-m5yycadcbj

  • MD5

    8b1011bf4b9dc38d8aececd4ed9e11c6

  • SHA1

    9d04f1d07eb61b8cd6ae26be619b409ba0581ede

  • SHA256

    5db7ad7b3b345ecb7da30349183fafaf4a7bbd4e566e4d7ea4c0e6d895d983d2

  • SHA512

    9be022599d6348b32facef0e1dd54a02b959594c362e5d76bae8e20ba51aee53732273801efc8fb28c587036667cad34cea03068d02495aa6ec7892be9202d73

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      5db7ad7b3b345ecb7da30349183fafaf4a7bbd4e566e4d7ea4c0e6d895d983d2

    • Size

      3.2MB

    • MD5

      8b1011bf4b9dc38d8aececd4ed9e11c6

    • SHA1

      9d04f1d07eb61b8cd6ae26be619b409ba0581ede

    • SHA256

      5db7ad7b3b345ecb7da30349183fafaf4a7bbd4e566e4d7ea4c0e6d895d983d2

    • SHA512

      9be022599d6348b32facef0e1dd54a02b959594c362e5d76bae8e20ba51aee53732273801efc8fb28c587036667cad34cea03068d02495aa6ec7892be9202d73

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner Payload

      miner

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks