Overview

overview

10

Static

static

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    be7426d93709fb3255a1705922463b05e9d74668869f6358fe67c3a6666bd187

  • Size

    700.1MB

  • Sample

    221010-e3d66aaeg8

  • MD5

    f9c1f369ddbba4e84e3b239d9ae256c7

  • SHA1

    e2992337541f8911206c155dbc8216dc25b1463e

  • SHA256

    be7426d93709fb3255a1705922463b05e9d74668869f6358fe67c3a6666bd187

  • SHA512

    da274c5eaf0d0ac9af827850a350f7d5094a3c403f94fc5838997809cd563a13a85258f2ba189c7a5165801fd9b1badb367a20eb5b65dedfc19089c15e5ed104

  • SSDEEP

    3072:MMK02QLh8xAU+kdApKbGOHt7zeATDmIVGRbVsJqsU1v1Kk:M90awKNzeATyI8beJqsU1v1K

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      be7426d93709fb3255a1705922463b05e9d74668869f6358fe67c3a6666bd187

    • Size

      700.1MB

    • MD5

      f9c1f369ddbba4e84e3b239d9ae256c7

    • SHA1

      e2992337541f8911206c155dbc8216dc25b1463e

    • SHA256

      be7426d93709fb3255a1705922463b05e9d74668869f6358fe67c3a6666bd187

    • SHA512

      da274c5eaf0d0ac9af827850a350f7d5094a3c403f94fc5838997809cd563a13a85258f2ba189c7a5165801fd9b1badb367a20eb5b65dedfc19089c15e5ed104

    • SSDEEP

      3072:MMK02QLh8xAU+kdApKbGOHt7zeATDmIVGRbVsJqsU1v1Kk:M90awKNzeATyI8beJqsU1v1K

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Downloads MZ/PE file

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks