Overview

overview

10

Static

static

10

068fa5c461...87.exe

windows7_x64

10

068fa5c461...87.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    068fa5c4619306ec34286d3516190f773f9b9e1e7597b14a2f9c1351466c9287

  • Size

    2.3MB

  • Sample

    220516-pwvwfabgh8

  • MD5

    12215ad37192f6b2ce6df3f2da63d332

  • SHA1

    09816a62a11bbad51f4d5a25afeb39d13f559636

  • SHA256

    068fa5c4619306ec34286d3516190f773f9b9e1e7597b14a2f9c1351466c9287

  • SHA512

    cbcf67cad703187d0fb521210348880f5d97cbab9da5f96c07a88c35078fcb32aa21eab928ef46c4776ee1f217a277daf852866ebf7fd613d243649f01b03f37

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      068fa5c4619306ec34286d3516190f773f9b9e1e7597b14a2f9c1351466c9287

    • Size

      2.3MB

    • MD5

      12215ad37192f6b2ce6df3f2da63d332

    • SHA1

      09816a62a11bbad51f4d5a25afeb39d13f559636

    • SHA256

      068fa5c4619306ec34286d3516190f773f9b9e1e7597b14a2f9c1351466c9287

    • SHA512

      cbcf67cad703187d0fb521210348880f5d97cbab9da5f96c07a88c35078fcb32aa21eab928ef46c4776ee1f217a277daf852866ebf7fd613d243649f01b03f37

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks