Overview

overview

10

Static

static

7

kswapd0

ubuntu-20.04-amd64

10

Resubmissions

07-03-2024 09:45

240307-lrdjtage46 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    kswapd0

  • Size

    2.1MB

  • Sample

    240307-lrdjtage46

  • MD5

    8da798989b6e48fb211674b652119a8c

  • SHA1

    ffe36761ebc571f086d06e8a3b5cb3adc5ce8deb

  • SHA256

    8acfbcd3da37b25ae2f2d88115c4b1b05c75e2e9face918e3f21fa10cc3126b4

  • SHA512

    1859b99e1cfa246807d51cec8441b00d0a21251d46198a92b10e7bcf3a4d764a48ba54953da2d79cdbb2d9e29d95d2a6c86c2a34e0968409dbedf9baff807f3b

  • SSDEEP

    49152:XNcjlR90c88OeWSUiyLspBFLKb52pzTduYRSt4rxIugUWsfCfbws:9WPQheWvi9TKV29TdjxICWeCTws

Score
10/10
xmrig_linuxantivmlinuxminerupx

Malware Config

Targets

    • Target

      kswapd0

    • Size

      2.1MB

    • MD5

      8da798989b6e48fb211674b652119a8c

    • SHA1

      ffe36761ebc571f086d06e8a3b5cb3adc5ce8deb

    • SHA256

      8acfbcd3da37b25ae2f2d88115c4b1b05c75e2e9face918e3f21fa10cc3126b4

    • SHA512

      1859b99e1cfa246807d51cec8441b00d0a21251d46198a92b10e7bcf3a4d764a48ba54953da2d79cdbb2d9e29d95d2a6c86c2a34e0968409dbedf9baff807f3b

    • SSDEEP

      49152:XNcjlR90c88OeWSUiyLspBFLKb52pzTduYRSt4rxIugUWsfCfbws:9WPQheWvi9TKV29TdjxICWeCTws

    Score
    10/10
    xmrig_linuxantivmminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig_linux

    • Attempts to change immutable files

      Modifies inode attributes on the filesystem to allow changing of immutable files.

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Checks hardware identifiers (DMI)

      Checks DMI information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    • Reads hardware information

      Accesses system info like serial numbers, manufacturer names etc.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks