Overview

overview

10

Static

static

10

xmrig

ubuntu-18.04-amd64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    xmrig.tar.gz

  • Size

    2.9MB

  • Sample

    231121-tkpx9sgc3x

  • MD5

    b1bcad3e32913c7e5b6f48e645e4d42c

  • SHA1

    95f27bc9739826adb39533a25270955a645d9b66

  • SHA256

    621a19e52bf3d25aaa60b6fee9d086b4fe51c2bbac5e682d1d39f04abcd18b36

  • SHA512

    4217b567403d8c882d5aa2b760c90e00f9e33355d15b0f240715b84d2acc276fc03958a63d3c3f69397fa14c5f27c1d612947ff6813d3e67421488cf322f9512

  • SSDEEP

    49152:FBTp9mSRsTZ+H0h+v6ELhp5TN+KNqoQ+grk3Qz5FFkG6dd0RPE5ZBMt:pRsTZ+H0XELhPp+KNqKgggzmGOqRPEot

Score
10/10
xmrigantivmlinuxminerrootkit

Malware Config

Targets

    • Target

      xmrig

    • Size

      6.7MB

    • MD5

      199b790d05724170f3e6583500799db1

    • SHA1

      c0cab89a9dc3eb30f99d3577ffd82defda7dd03b

    • SHA256

      20a0864cb7dac55c184bd86e45a6e0acbd4bb19aa29840b824d369de710b6152

    • SHA512

      19e3d5a7ad43f89bda7303243bfa24ef0a91a2d6e1f2ec65a92cc5b13863ff45feddfd4141c0fec9148f30fd5a2fee5740eae237d03fe5f1c38de2e6b231ab1d

    • SSDEEP

      196608:mGyx2Z/ccFGeLoC0Sbg7X+WloiMbqRoQ6:msioQ6

    Score
    7/10
    antivmrootkit

    • Loads a kernel module

      Loads a Linux kernel module, potentially to achieve persistence

      rootkit

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Checks hardware identifiers (DMI)

      Checks DMI information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    • Reads hardware information

      Accesses system info like serial numbers, manufacturer names etc.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks