Overview

overview

10

Static

static

9561175861...c3.exe

windows7-x64

10

9561175861...c3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    956117586181a15056ff4420076301c3.exe

  • Size

    3.4MB

  • Sample

    220928-tvw5bsged3

  • MD5

    956117586181a15056ff4420076301c3

  • SHA1

    e8ec0f2435bfbb699d944ad86a634c33d509107c

  • SHA256

    e038d93033cc8788027ff5c045b6bd2beab9b34ef79b80e61d6d1c587bd86e16

  • SHA512

    8d299ecc49741ec341e34459ae5e4b6472e190c994a47ba3cdd29d309a169baf54f12451675d1af22fc38c0aed6037d7861e8d9cf60dc664e75981ccbfcfdf35

  • SSDEEP

    98304:ch0ywRz70/W9+68ZBtKe3oWFGNc+sA5loQwMEp+ou/HJ:3yf/W9+DfFGNv5lnEMoOJ

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      956117586181a15056ff4420076301c3.exe

    • Size

      3.4MB

    • MD5

      956117586181a15056ff4420076301c3

    • SHA1

      e8ec0f2435bfbb699d944ad86a634c33d509107c

    • SHA256

      e038d93033cc8788027ff5c045b6bd2beab9b34ef79b80e61d6d1c587bd86e16

    • SHA512

      8d299ecc49741ec341e34459ae5e4b6472e190c994a47ba3cdd29d309a169baf54f12451675d1af22fc38c0aed6037d7861e8d9cf60dc664e75981ccbfcfdf35

    • SSDEEP

      98304:ch0ywRz70/W9+68ZBtKe3oWFGNc+sA5loQwMEp+ou/HJ:3yf/W9+DfFGNv5lnEMoOJ

    Score
    10/10
    xmrigminerupx

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks