xmrig | 71738fa14048ec5a7bec852fb4551f35d49cb790f6ea390e8308cfc8a5fa91c6 | Triage

Submit
Reports

Overview

overview

Static

static

3

60396d247d...6a.exe

windows7-x64

60396d247d...6a.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

60396d247dfaabf972886d2ce21ea36a
Size

45KB
Sample

231226-khpeaaaean
MD5

60396d247dfaabf972886d2ce21ea36a
SHA1

e8d12a9c5b5052174c2da49a894f7d1dff632e2f
SHA256

71738fa14048ec5a7bec852fb4551f35d49cb790f6ea390e8308cfc8a5fa91c6
SHA512

23c39d432572389287b53e9383e70b40fd2b7f6eeee36a46a79201ce3d0b5d98b1b33510ee4696fc5b0fccbe22a9d066a256a9c0c407ea48716066aae4891f3b
SSDEEP

768:GC9qgMBtfGBLpu5mA92qPesOjQxBmo960hW9gmw4QkvOeMTYF9RcUIgliZ:GCjMrfSUmA9TPeaxBZ6z+pkvD7F9R3QZ

Score

10^/10

xmrig miner

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

60396d247dfaabf972886d2ce21ea36a.exe

Resource

win7-20231215-en

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

60396d247dfaabf972886d2ce21ea36a.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  60396d247dfaabf972886d2ce21ea36a
- Size
  
  45KB
- MD5
  
  60396d247dfaabf972886d2ce21ea36a
- SHA1
  
  e8d12a9c5b5052174c2da49a894f7d1dff632e2f
- SHA256
  
  71738fa14048ec5a7bec852fb4551f35d49cb790f6ea390e8308cfc8a5fa91c6
- SHA512
  
  23c39d432572389287b53e9383e70b40fd2b7f6eeee36a46a79201ce3d0b5d98b1b33510ee4696fc5b0fccbe22a9d066a256a9c0c407ea48716066aae4891f3b
- SSDEEP
  
  768:GC9qgMBtfGBLpu5mA92qPesOjQxBmo960hW9gmw4QkvOeMTYF9RcUIgliZ:GCjMrfSUmA9TPeaxBZ6z+pkvD7F9R3QZ
Score

10^/10

xmrig miner
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy