xmrig | f67746e5bff0fa6d9d578f3c81246ec8af9de4899a6e663daa570f4aa94edf43 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

f67746e5bf...43.exe

windows7-x64

f67746e5bf...43.exe

windows10-2004-x64

Sharing

General

Target

f67746e5bff0fa6d9d578f3c81246ec8af9de4899a6e663daa570f4aa94edf43
Size

1.8MB
Sample

231114-xhg2esec5w
MD5

eb4c372ee43fc2548d6843f3d02c9797
SHA1

fb0b142f8a6167f1be4701727b5e5e622b751bb4
SHA256

f67746e5bff0fa6d9d578f3c81246ec8af9de4899a6e663daa570f4aa94edf43
SHA512

f745531e7656eff40e7fad491e80ecf93288f10f1509a0239372ff0b47da7350bc1ff09a96377a4095d914e06f605a1dab807b25c5bf390b98ce8ee11d8a276f
SSDEEP

49152:XPujn/TJQ1NLlSqrU5tUE1etEtLlWiTHfeiEA2RQ6zHvyRWMzTb/AxoFIO2:XPcn/TJKSb5tN1etEtLlWiTHfeiEA2RJ

Score

10^/10

xmrig miner

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

f67746e5bff0fa6d9d578f3c81246ec8af9de4899a6e663daa570f4aa94edf43.exe

Resource

win7-20231020-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

f67746e5bff0fa6d9d578f3c81246ec8af9de4899a6e663daa570f4aa94edf43.exe

Resource

win10v2004-20231025-en

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  f67746e5bff0fa6d9d578f3c81246ec8af9de4899a6e663daa570f4aa94edf43
- Size
  
  1.8MB
- MD5
  
  eb4c372ee43fc2548d6843f3d02c9797
- SHA1
  
  fb0b142f8a6167f1be4701727b5e5e622b751bb4
- SHA256
  
  f67746e5bff0fa6d9d578f3c81246ec8af9de4899a6e663daa570f4aa94edf43
- SHA512
  
  f745531e7656eff40e7fad491e80ecf93288f10f1509a0239372ff0b47da7350bc1ff09a96377a4095d914e06f605a1dab807b25c5bf390b98ce8ee11d8a276f
- SSDEEP
  
  49152:XPujn/TJQ1NLlSqrU5tUE1etEtLlWiTHfeiEA2RQ6zHvyRWMzTb/AxoFIO2:XPcn/TJKSb5tN1etEtLlWiTHfeiEA2RJ
Score

10^/10

xmrig miner
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy