Overview

overview

10

Static

static

5

7af4419d37...ab.exe

windows7_x64

10

7af4419d37...ab.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7af4419d37f24f63357ac55c069ba4025fba9aae4efc581d76fa4ff0f53853ab

  • Size

    11.8MB

  • Sample

    220520-ffqgcaddgp

  • MD5

    de8b22123305f9564d38bd3a570b0992

  • SHA1

    462da187b0cf5408254260520650a26e31083836

  • SHA256

    7af4419d37f24f63357ac55c069ba4025fba9aae4efc581d76fa4ff0f53853ab

  • SHA512

    48eda6a03ef96fb84faf76db51cfd1b5b1bc0990b0cc18f4f9af7e94f5037b904575ad93c7641966d119b997277e8d947c31931309b15b1d89811d1742f169a7

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      7af4419d37f24f63357ac55c069ba4025fba9aae4efc581d76fa4ff0f53853ab

    • Size

      11.8MB

    • MD5

      de8b22123305f9564d38bd3a570b0992

    • SHA1

      462da187b0cf5408254260520650a26e31083836

    • SHA256

      7af4419d37f24f63357ac55c069ba4025fba9aae4efc581d76fa4ff0f53853ab

    • SHA512

      48eda6a03ef96fb84faf76db51cfd1b5b1bc0990b0cc18f4f9af7e94f5037b904575ad93c7641966d119b997277e8d947c31931309b15b1d89811d1742f169a7

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner Payload

      miner

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops startup file

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks