xmrig | aed12441b21e0a66daf973c963030659f30193bebe39ba83bf816888cd76f230 | Triage

Submit
Reports

Overview

overview

Static

static

1

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

aed12441b21e0a66daf973c963030659f30193bebe39ba83bf816888cd76f230
Size

63KB
Sample

230314-fvey6ade68
MD5

12fb0f015c25e58175b863e9488ff8fd
SHA1

2c685241baa21c209f683087720615c803682a4b
SHA256

aed12441b21e0a66daf973c963030659f30193bebe39ba83bf816888cd76f230
SHA512

144c310b1635770bd95f17017357e23c98191828bd3543b4f94a8cd2dc514d516d770d32e65dc44f394c714e52081e7cc53679280ef460f5e03a01f971df6a8d
SSDEEP

768:XnV24kDJJdtVCHCJF+rA6ChXLCQfBYOMbEJtzAMZ0cz+qDZ0Z7ZS13CLRKt:XnkvZCiGrA6ChXmGBVMbEbsm9G7ZmkA

Score

10^/10

xmrig miner persistence

Static task

static1

Behavioral task

behavioral1

Sample

aed12441b21e0a66daf973c963030659f30193bebe39ba83bf816888cd76f230.exe

Resource

win7-20230220-en

windows7-x64

2 signatures

300 seconds

Behavioral task

behavioral2

Sample

aed12441b21e0a66daf973c963030659f30193bebe39ba83bf816888cd76f230.exe

Resource

win10-20230220-en

xmrig miner persistence

windows10-1703-x64

10 signatures

300 seconds

Malware Config

Targets

- Target
  
  aed12441b21e0a66daf973c963030659f30193bebe39ba83bf816888cd76f230
- Size
  
  63KB
- MD5
  
  12fb0f015c25e58175b863e9488ff8fd
- SHA1
  
  2c685241baa21c209f683087720615c803682a4b
- SHA256
  
  aed12441b21e0a66daf973c963030659f30193bebe39ba83bf816888cd76f230
- SHA512
  
  144c310b1635770bd95f17017357e23c98191828bd3543b4f94a8cd2dc514d516d770d32e65dc44f394c714e52081e7cc53679280ef460f5e03a01f971df6a8d
- SSDEEP
  
  768:XnV24kDJJdtVCHCJF+rA6ChXLCQfBYOMbEJtzAMZ0cz+qDZ0Z7ZS13CLRKt:XnkvZCiGrA6ChXmGBVMbEbsm9G7ZmkA
Score

10^/10

xmrig miner persistence
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Downloads MZ/PE file
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Registry Run Keys / Startup Folder

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Modify Registry

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

xmrigminerpersistence

© 2018-2025

Terms | Privacy