xmrig | dc27f1a2e3285428ddd71705f053ba1fab028608a08a08824720484c30b1ec0e | Triage

Submit
Reports

Overview

overview

Static

static

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

file.exe
Size

883KB
Sample

230101-sj2d8sca63
MD5

1f94ec704a0cf3f5797e538d69e26318
SHA1

b15ada6f73e6d21add6abc46a8e8e5a0a63bbc28
SHA256

dc27f1a2e3285428ddd71705f053ba1fab028608a08a08824720484c30b1ec0e
SHA512

c848c94bd832e7ff8bed30d896838a38b35f22bb74048dec1a19d5032b867732e6de01b334eb9baafa9e6853dc04e1101d763d411f7f14c9634ae3a8efe0d210
SSDEEP

12288:ztVSX3x7FRSJWeOkDPHAgybo+3BouhTRgfHnnbmjwnAD23XIkWK9v8pEIzecVSRu:ztVSn52IxbPeBnblXJRvMFeCJn

Score

10^/10

xmrig miner

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20221111-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  883KB
- MD5
  
  1f94ec704a0cf3f5797e538d69e26318
- SHA1
  
  b15ada6f73e6d21add6abc46a8e8e5a0a63bbc28
- SHA256
  
  dc27f1a2e3285428ddd71705f053ba1fab028608a08a08824720484c30b1ec0e
- SHA512
  
  c848c94bd832e7ff8bed30d896838a38b35f22bb74048dec1a19d5032b867732e6de01b334eb9baafa9e6853dc04e1101d763d411f7f14c9634ae3a8efe0d210
- SSDEEP
  
  12288:ztVSX3x7FRSJWeOkDPHAgybo+3BouhTRgfHnnbmjwnAD23XIkWK9v8pEIzecVSRu:ztVSn52IxbPeBnblXJRvMFeCJn
Score

10^/10

xmrig miner
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Scripting

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy