Overview

overview

10

Static

static

10

NEAS.43690...f0.exe

windows7-x64

10

NEAS.43690...f0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.4369029afea776138bc1bae400cf79f0.exe

  • Size

    3.0MB

  • Sample

    231101-gm2cvsbc3y

  • MD5

    4369029afea776138bc1bae400cf79f0

  • SHA1

    67dc27781f2152670d180a41b8574acd9bc146c1

  • SHA256

    324be6d0b596655278f3f413b72af0d8e4c442e56abf598290b18e290b00c8c5

  • SHA512

    dcf4f486e7b7181ff5ffd37adc5fc0ca98e63b2c605385ba384a2788589cb62d8fed0be92adfef238f29b29a09a57863b28bcb4be6653f7a334d349c79ec90c3

  • SSDEEP

    49152:N0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8Dze7jcq4nPeyNIIK/:N0GnJMOWPClFdx6e0EALKWVTffZiPAcg

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      NEAS.4369029afea776138bc1bae400cf79f0.exe

    • Size

      3.0MB

    • MD5

      4369029afea776138bc1bae400cf79f0

    • SHA1

      67dc27781f2152670d180a41b8574acd9bc146c1

    • SHA256

      324be6d0b596655278f3f413b72af0d8e4c442e56abf598290b18e290b00c8c5

    • SHA512

      dcf4f486e7b7181ff5ffd37adc5fc0ca98e63b2c605385ba384a2788589cb62d8fed0be92adfef238f29b29a09a57863b28bcb4be6653f7a334d349c79ec90c3

    • SSDEEP

      49152:N0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8Dze7jcq4nPeyNIIK/:N0GnJMOWPClFdx6e0EALKWVTffZiPAcg

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks