Overview

overview

10

Static

static

10

248a1bb138...54.exe

windows7-x64

10

248a1bb138...54.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    248a1bb1387c9c2e620072d5fc754749c26394ffccc820db16471da7f53a8854

  • Size

    1.5MB

  • Sample

    240325-wap7dshc2t

  • MD5

    ab7112ce3ff98200c827ec68028271ea

  • SHA1

    39653ec9d1c4079048f6fc48ef744a2ad16cd49a

  • SHA256

    248a1bb1387c9c2e620072d5fc754749c26394ffccc820db16471da7f53a8854

  • SHA512

    a40845876f14067cd9012fc976dc35dd6e4d05b24a317e50890ee5f3360f2c38b4b1c9b2ef5206bd25c3fb005576347525d0db0801c99cc73bd1a241fa91f637

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlWXWZ5Pbcq92zMWQ59U4WVqXxqx3hh8:knw9oUUEEDl37jcq4QJlXxmh8

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      248a1bb1387c9c2e620072d5fc754749c26394ffccc820db16471da7f53a8854

    • Size

      1.5MB

    • MD5

      ab7112ce3ff98200c827ec68028271ea

    • SHA1

      39653ec9d1c4079048f6fc48ef744a2ad16cd49a

    • SHA256

      248a1bb1387c9c2e620072d5fc754749c26394ffccc820db16471da7f53a8854

    • SHA512

      a40845876f14067cd9012fc976dc35dd6e4d05b24a317e50890ee5f3360f2c38b4b1c9b2ef5206bd25c3fb005576347525d0db0801c99cc73bd1a241fa91f637

    • SSDEEP

      24576:JanwhSe11QSONCpGJCjETPlWXWZ5Pbcq92zMWQ59U4WVqXxqx3hh8:knw9oUUEEDl37jcq4QJlXxmh8

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • UPX dump on OEP (original entry point)

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks