xmrig | 332963bc8d4592d82b0af12f674e54053913795e5a92e494409ac417d6b90575 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

332963bc8d4592d82b0af12f674e54053913795e5a92e494409ac417d6b90575
Size

917KB
Sample

230109-r7hrcsaa9y
MD5

4c48470f3279dff89e27489777ee2918
SHA1

2a6ee90e56ecb7ee4e7652faab5bdf50ba61dbf1
SHA256

332963bc8d4592d82b0af12f674e54053913795e5a92e494409ac417d6b90575
SHA512

eb47c263575d1160ac02a7372e87efab4b4deb1686e7a2701bf338c855e621fedce4e6d19db125776144c4d57781344977b17937eb7ff46d53e8ee0f866b9532
SSDEEP

12288:yO+mxQcvGtjDsg/hoiw79qJ0XOdlfjw+Ptbsq+e5SFVRKcJ+NZP8HD7g+0AO:yO3xQcvng/hoNq2efba788/mn

Score

10^/10

xmrig miner

Static task

static1

Behavioral task

behavioral1

Sample

332963bc8d4592d82b0af12f674e54053913795e5a92e494409ac417d6b90575.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  332963bc8d4592d82b0af12f674e54053913795e5a92e494409ac417d6b90575
- Size
  
  917KB
- MD5
  
  4c48470f3279dff89e27489777ee2918
- SHA1
  
  2a6ee90e56ecb7ee4e7652faab5bdf50ba61dbf1
- SHA256
  
  332963bc8d4592d82b0af12f674e54053913795e5a92e494409ac417d6b90575
- SHA512
  
  eb47c263575d1160ac02a7372e87efab4b4deb1686e7a2701bf338c855e621fedce4e6d19db125776144c4d57781344977b17937eb7ff46d53e8ee0f866b9532
- SSDEEP
  
  12288:yO+mxQcvGtjDsg/hoiw79qJ0XOdlfjw+Ptbsq+e5SFVRKcJ+NZP8HD7g+0AO:yO3xQcvng/hoNq2efba788/mn
Score

10^/10

xmrig miner
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Scripting

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy