xmrig | 9a80b567feaaf4f2b2b089eb1573047a4f42ef5797d89123b89d67f33833555b | Triage

Analysis

max time kernel
151s
max time network
157s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
29/12/2023, 19:53

Sharing

Report Analysis Logs

General

Target

025315b63bf6eae138a479c6ef05f392.exe
Size

1.8MB
MD5

025315b63bf6eae138a479c6ef05f392
SHA1

198755722c8cfb74f27967266dffbbbf1e8c60c5
SHA256

9a80b567feaaf4f2b2b089eb1573047a4f42ef5797d89123b89d67f33833555b
SHA512

6973c753003f253309ddfe53ceaf02e1e6373dc8520c539ebb0b23f06aee34c3983916fec7474216b577bd09de852c703400f640b1cd71c91ba88b7b9362e2ab
SSDEEP

49152:dezaTF8FcNkNdfE0pZ9oztQwI0c6R9+27fne:demTLkNdfE0pZ3V

Score

10^/10

xmrig miner upx

Malware Config

Signatures

xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 1 IoCs

resource	yara_rule
behavioral2/memory/2908-0-0x00007FF66F6E0000-0x00007FF66FA34000-memory.dmp	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/2908-0-0x00007FF66F6E0000-0x00007FF66FA34000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\025315b63bf6eae138a479c6ef05f392.exe
"C:\Users\Admin\AppData\Local\Temp\025315b63bf6eae138a479c6ef05f392.exe"
1⤵
PID:2908

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2908-0-0x00007FF66F6E0000-0x00007FF66FA34000-memory.dmp

Filesize
3.3MB

Download