Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.exe

  • Size

    833KB

  • Sample

    230111-vmytmahe2w

  • MD5

    89a231f50e892657f53908aec29ac1c9

  • SHA1

    f0921d4d0a1682ca1643f0821367f46afd75ccaf

  • SHA256

    e05bf90f02d07d7b09673c9c2c9172ab2b57206ac2dc2d6d928cf29f997cd778

  • SHA512

    bc99e5fe51a64a9d0a8f6bfe1f6997c1068a77108455f24965cfb912d857633352fd2dd171169a5ccc03aaf17e0647b91bdd3765d66a4ae6d5bcbb36614f5506

  • SSDEEP

    12288:Rxxmn622SuwKi0yjicTNNYiImZB8TMcQaljmcYd0q3+fsel6PfN4bF+PRus8vqp7:Cdr1Ki3O6N1ImUocQazBq+zOfl8xS

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      file.exe

    • Size

      833KB

    • MD5

      89a231f50e892657f53908aec29ac1c9

    • SHA1

      f0921d4d0a1682ca1643f0821367f46afd75ccaf

    • SHA256

      e05bf90f02d07d7b09673c9c2c9172ab2b57206ac2dc2d6d928cf29f997cd778

    • SHA512

      bc99e5fe51a64a9d0a8f6bfe1f6997c1068a77108455f24965cfb912d857633352fd2dd171169a5ccc03aaf17e0647b91bdd3765d66a4ae6d5bcbb36614f5506

    • SSDEEP

      12288:Rxxmn622SuwKi0yjicTNNYiImZB8TMcQaljmcYd0q3+fsel6PfN4bF+PRus8vqp7:Cdr1Ki3O6N1ImUocQazBq+zOfl8xS

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks