xmrig_linux | 53046ec20ff41109e92ae74a5d9ea300d01c07d08fff936f2c7f527cae6384ec | Triage

Submit
Reports

Overview

overview

Static

static

1

53bb7f527f...kes118

ubuntu-20.04-amd64

Sharing

General

Target

53bb7f527f54eed90a63d10e75c22891_JaffaCakes118
Size

792KB
Sample

240331-l4qd5shh9z
MD5

53bb7f527f54eed90a63d10e75c22891
SHA1

1411a3ab8d7e78a11bf31ee8030f0b30871210d6
SHA256

53046ec20ff41109e92ae74a5d9ea300d01c07d08fff936f2c7f527cae6384ec
SHA512

ef0dfc14951df585de01df799d720cd28cb0d433101830cd051e5ff559edb942c570e2888fce5265305af3662983a1882978b79e90554aebb9e4228a58870ecb
SSDEEP

24576:Joed7lIbyHSDEkoTscHfaMPyalFyrARcwhYZAsaNP:iK7eby87oi6yaScRcNZAsoP

Score

10^/10

xmrig_linux antivm linux miner

Static task

static1

Behavioral task

behavioral1

Sample

53bb7f527f54eed90a63d10e75c22891_JaffaCakes118

Resource

ubuntu2004-amd64-20240221-en

xmrig_linux antivm miner

ubuntu-20.04-amd64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  53bb7f527f54eed90a63d10e75c22891_JaffaCakes118
- Size
  
  792KB
- MD5
  
  53bb7f527f54eed90a63d10e75c22891
- SHA1
  
  1411a3ab8d7e78a11bf31ee8030f0b30871210d6
- SHA256
  
  53046ec20ff41109e92ae74a5d9ea300d01c07d08fff936f2c7f527cae6384ec
- SHA512
  
  ef0dfc14951df585de01df799d720cd28cb0d433101830cd051e5ff559edb942c570e2888fce5265305af3662983a1882978b79e90554aebb9e4228a58870ecb
- SSDEEP
  
  24576:Joed7lIbyHSDEkoTscHfaMPyalFyrARcwhYZAsaNP:iK7eby87oi6yaScRcNZAsoP
Score

10^/10

xmrig_linux antivm miner
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig_linux
- XMRig Miner payload
  miner
- Changes its process name
- Deletes itself
- Checks CPU configuration
  Checks CPU information which indicate if the system is a virtual machine.
  antivm
- Checks hardware identifiers (DMI)
  Checks DMI information which indicate if the system is a virtual machine.
  antivm
- Reads CPU attributes
- Reads hardware information
  Accesses system info like serial numbers, manufacturer names etc.
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Virtualization/Sandbox Evasion

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

xmrig_linuxantivmminer

© 2018-2024

Terms | Privacy