xmrig | a00402e5172823c37d804531b5a4d71500da5a399c116a5384ff38bad546a1b5 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

a00402e5172823c37d804531b5a4d71500da5a399c116a5384ff38bad546a1b5
Size

945KB
Sample

221221-x31z2agb5v
MD5

7c245b4b77b331e7076c4904ec1ccddc
SHA1

add5041ccc59c3199b1f0832f5a70a121b9c258b
SHA256

a00402e5172823c37d804531b5a4d71500da5a399c116a5384ff38bad546a1b5
SHA512

860159ba1ddf24f0db5d6698dffb38d22ec332f21b2013bc388dd3193541c4a30317c9a19684a1ddb85c0d7f90bcbaccde34dbb30a23035c7ec8ca3b852bc32b
SSDEEP

24576:7+44gihoG6qV7CaaybGD055ytOuHXj923096N2l:jihoG6sGpyK0TOOs92h

Score

10^/10

xmrig miner

Static task

static1

Behavioral task

behavioral1

Sample

a00402e5172823c37d804531b5a4d71500da5a399c116a5384ff38bad546a1b5.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  a00402e5172823c37d804531b5a4d71500da5a399c116a5384ff38bad546a1b5
- Size
  
  945KB
- MD5
  
  7c245b4b77b331e7076c4904ec1ccddc
- SHA1
  
  add5041ccc59c3199b1f0832f5a70a121b9c258b
- SHA256
  
  a00402e5172823c37d804531b5a4d71500da5a399c116a5384ff38bad546a1b5
- SHA512
  
  860159ba1ddf24f0db5d6698dffb38d22ec332f21b2013bc388dd3193541c4a30317c9a19684a1ddb85c0d7f90bcbaccde34dbb30a23035c7ec8ca3b852bc32b
- SSDEEP
  
  24576:7+44gihoG6qV7CaaybGD055ytOuHXj923096N2l:jihoG6sGpyK0TOOs92h
Score

10^/10

xmrig miner
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Scripting

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy