Overview

overview

10

Static

static

3

e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e.exe

  • Size

    5.4MB

  • Sample

    230720-w3j6vaae6z

  • MD5

    a5a96cab29129f3533b3dced4b547006

  • SHA1

    c826abdf0d67a1ebadfe34bdad0d3a4e085b1126

  • SHA256

    b14d2da38376c93b632d1af8744b246c2de3d5d0890d207682d4168a1152bbbd

  • SHA512

    de54608a1e34aa10b54a7136746ad28ed74063f07561953fc7bd1cce55b7d5834826c2e105dcdeda0b0f2fae3c34467a8541c2d7770b0c34facfcdf7424df07d

  • SSDEEP

    98304:KzsS668Vp0Sq7PKFoIwFecmDaN36DgvuHlBV+JslC3uBtq9o1:KI163Sq7PwwiaN36DgvuHl6d32qq

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      e.exe

    • Size

      5.4MB

    • MD5

      a5a96cab29129f3533b3dced4b547006

    • SHA1

      c826abdf0d67a1ebadfe34bdad0d3a4e085b1126

    • SHA256

      b14d2da38376c93b632d1af8744b246c2de3d5d0890d207682d4168a1152bbbd

    • SHA512

      de54608a1e34aa10b54a7136746ad28ed74063f07561953fc7bd1cce55b7d5834826c2e105dcdeda0b0f2fae3c34467a8541c2d7770b0c34facfcdf7424df07d

    • SSDEEP

      98304:KzsS668Vp0Sq7PKFoIwFecmDaN36DgvuHlBV+JslC3uBtq9o1:KI163Sq7PwwiaN36DgvuHl6d32qq

    Score
    10/10
    xmrigminer

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks