Overview

overview

10

Static

static

10

c2506e912f...97.exe

windows7-x64

10

c2506e912f...97.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c2506e912f6be8e31537d016ec2a8097

  • Size

    2.3MB

  • Sample

    240409-y4246adb6s

  • MD5

    c2506e912f6be8e31537d016ec2a8097

  • SHA1

    b7991771c2827cbcf17a7d3d037cde2c59fdd1a2

  • SHA256

    ee34d4dc8f872bebfa86a3a38fc7cf2a2b1a951423b16decb771f5d7f9919b9f

  • SHA512

    92b8a192f2705fc29ce8b15c1762fc534bcea4f5c85d64b0358b3f4e4f909fc6db75baed3334b1a3edfaff62bf37830eead87ca0390c1d2d990731de7c889c76

  • SSDEEP

    49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkyW10/wKC:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2RE

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      c2506e912f6be8e31537d016ec2a8097

    • Size

      2.3MB

    • MD5

      c2506e912f6be8e31537d016ec2a8097

    • SHA1

      b7991771c2827cbcf17a7d3d037cde2c59fdd1a2

    • SHA256

      ee34d4dc8f872bebfa86a3a38fc7cf2a2b1a951423b16decb771f5d7f9919b9f

    • SHA512

      92b8a192f2705fc29ce8b15c1762fc534bcea4f5c85d64b0358b3f4e4f909fc6db75baed3334b1a3edfaff62bf37830eead87ca0390c1d2d990731de7c889c76

    • SSDEEP

      49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkyW10/wKC:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2RE

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Blocklisted process makes network request

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks