xmrig | 771ff2d6ba4bb76d9ba122e4bad6b605e26efc93240fbca3eab07588b9d9a00f | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

Compiled.Gen.rar

windows10-2004-x64

Resubmissions

03/08/2023, 21:09

230803-zztgwshc9v 10

03/08/2023, 21:08

230803-zy6e3agb42 3

Sharing

General

Target

Compiled.Gen.rar
Size

2.1MB
Sample

230803-zztgwshc9v
MD5

45f4f92ece7eb2381ee864062fb6d580
SHA1

8763c611d96a02e27b44d32f5ae59192f6205adc
SHA256

771ff2d6ba4bb76d9ba122e4bad6b605e26efc93240fbca3eab07588b9d9a00f
SHA512

93868ded35496dfd0f5b9e75b61bb27624924e30db4342f4044d94dd9a69270f5211d4dd91fc2f30a5e38c356cff1e116a890407fb37545ad156c99b1a2d25bf
SSDEEP

49152:U0VwdL4OSseR2hOXsznShCSvN6hVS/Ywf4Pk2Osy6KlredjTCo:UOwd/i+ANvNiSj2kV6c6dj3

Score

10^/10

xmrig miner persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Compiled.Gen.rar

Resource

win10v2004-20230703-en

xmrig miner persistence

windows10-2004-x64

18 signatures

150 seconds

Malware Config

Targets

- Target
  
  Compiled.Gen.rar
- Size
  
  2.1MB
- MD5
  
  45f4f92ece7eb2381ee864062fb6d580
- SHA1
  
  8763c611d96a02e27b44d32f5ae59192f6205adc
- SHA256
  
  771ff2d6ba4bb76d9ba122e4bad6b605e26efc93240fbca3eab07588b9d9a00f
- SHA512
  
  93868ded35496dfd0f5b9e75b61bb27624924e30db4342f4044d94dd9a69270f5211d4dd91fc2f30a5e38c356cff1e116a890407fb37545ad156c99b1a2d25bf
- SSDEEP
  
  49152:U0VwdL4OSseR2hOXsznShCSvN6hVS/Ywf4Pk2Osy6KlredjTCo:UOwd/i+ANvNiSj2kV6c6dj3
Score

10^/10

xmrig miner persistence
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- Registers COM server for autorun
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistence

© 2018-2025

Terms | Privacy