xmrig | b68435ab3f68fed660c2e2ba3ef5148199a502b5fc1fd49388889e26955566e4 | Triage

Resubmissions

26/10/2022, 19:41

221026-yeebssggg5 10

16/07/2022, 05:16

220716-fx585ahggr 10

Sharing

Copy URL Twitter E-mail

General

Target

b68435ab3f68fed660c2e2ba3ef5148199a502b5fc1fd49388889e26955566e4
Size

5.1MB
MD5

9dc864de874afebb3089b97d63ca4921
SHA1

fa753e12a7ba39ea9f7c9644b0bf7bcdc2f0db36
SHA256

b68435ab3f68fed660c2e2ba3ef5148199a502b5fc1fd49388889e26955566e4
SHA512

d71c0e251f6011db72fc10f0388a1736641ce91b9b1c5ee85f47dff34e1020c092be823b57c72df0d99a63f4bae87daca6a21aa8047ff3016dc9688eb2b50d8b
SSDEEP

98304:q13V3a0rqRIZ+wrvNoGRtKzIVLplxsVmHOx+IK4Wpi5WVHpC/tBYVZpaLEi:q13V3HrqR4NlEzIJprsVmHUWkQJC4W

Score

10^/10

miner xmrig

Malware Config

Signatures

XMRig Miner payload 1 IoCs

resource	yara_rule
static1/unpack002/.rsync/a/anacron	xmrig

Xmrig family
xmrig

Files

b68435ab3f68fed660c2e2ba3ef5148199a502b5fc1fd49388889e26955566e4
.gz
sample
.tar
.rsync/a/anacron
.elf linux x86
.rsync/c/go
.sh linux
.rsync/c/golan
.sh linux
.rsync/c/lib/32/libc.so.6
.elf linux x86
.rsync/c/lib/32/libdl.so.2
.elf linux x86
.rsync/c/lib/32/libnss_dns.so.2
.elf linux x86
.rsync/c/lib/32/libnss_files.so.2
.elf linux x86
.rsync/c/lib/32/libpthread.so.0
.elf linux x86
.rsync/c/lib/32/libresolv-2.23.so
.elf linux x86
.rsync/c/lib/32/libresolv.so.2
.elf linux x86
.rsync/c/lib/32/tsm
.elf linux x86
.rsync/c/lib/64/libc.so.6
.elf linux x64
.rsync/c/lib/64/libdl.so.2
.elf linux x64
.rsync/c/lib/64/libnss_dns.so.2
.elf linux x64
.rsync/c/lib/64/libnss_files.so.2
.elf linux x64
.rsync/c/lib/64/libpthread.so.0
.elf linux x64
.rsync/c/lib/64/libresolv-2.23.so
.elf linux x64
.rsync/c/lib/64/libresolv.so.2
.elf linux x64
.rsync/c/lib/64/tsm
.elf linux x64
.rsync/c/run
.sh linux
.rsync/c/slow
.sh linux
.rsync/c/start
.sh linux
.rsync/c/stop
.sh linux
.rsync/c/tsm
.sh linux
.rsync/c/tsm32
.elf linux x86
.rsync/c/tsm64
.elf linux x64
.rsync/c/watchdog
.sh linux
.rsync/init
.rsync/init2
.rsync/initall
.sh linux