xmrig | dca33b5f75d01e953e87a0bfca64ed31d460f2feed1db968b59dc7f98771221f | Triage

Submit
Reports

Overview

overview

Static

static

1

winprofile

windows7-x64

5

winprofile

windows10-1703-x64

Sharing

General

Target

dca33b5f75d01e953e87a0bfca64ed31d460f2feed1db968b59dc7f98771221f
Size

312KB
Sample

230529-d9n49shh4w
MD5

7c3c0e8ef38bdb43da4aa12b1815ac8b
SHA1

778dcbf3ecbc7f46c3166abbae9f9a1fd17319e4
SHA256

dca33b5f75d01e953e87a0bfca64ed31d460f2feed1db968b59dc7f98771221f
SHA512

07a8f990fedfd04776f30f69faac52d62a372d0291099818bb3e959d6e1228ea4e63f1022905f31f2d4a0598f0e83122f5ba67b9909e43bc458cf6479bad1cb2
SSDEEP

6144:ZqizpeVCVvjFKDLXJepjSq5dEO9Uj6qcIwvD:HdeoRJKDLXJSSqP9y6qFgD

Score

10^/10

xmrig miner

Static task

static1

Behavioral task

behavioral1

Sample

dca33b5f75d01e953e87a0bfca64ed31d460f2feed1db968b59dc7f98771221f.exe

Resource

win7-20230220-en

windows7-x64

4 signatures

300 seconds

Behavioral task

behavioral2

Sample

dca33b5f75d01e953e87a0bfca64ed31d460f2feed1db968b59dc7f98771221f.exe

Resource

win10-20230220-en

windows10-1703-x64

13 signatures

300 seconds

Malware Config

Targets

- Target
  
  dca33b5f75d01e953e87a0bfca64ed31d460f2feed1db968b59dc7f98771221f
- Size
  
  312KB
- MD5
  
  7c3c0e8ef38bdb43da4aa12b1815ac8b
- SHA1
  
  778dcbf3ecbc7f46c3166abbae9f9a1fd17319e4
- SHA256
  
  dca33b5f75d01e953e87a0bfca64ed31d460f2feed1db968b59dc7f98771221f
- SHA512
  
  07a8f990fedfd04776f30f69faac52d62a372d0291099818bb3e959d6e1228ea4e63f1022905f31f2d4a0598f0e83122f5ba67b9909e43bc458cf6479bad1cb2
- SSDEEP
  
  6144:ZqizpeVCVvjFKDLXJepjSq5dEO9Uj6qcIwvD:HdeoRJKDLXJSSqP9y6qFgD
Score

10^/10

xmrig miner
- XMRig Miner payload
  miner
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- Downloads MZ/PE file
- Drops file in Drivers directory
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy