xmrig | 1ae59340f7dcc6eb1864d16652b602124d00f9a3edea2c41d3e27539f2d6d04f | Triage

Submit
Reports

Overview

overview

Static

static

0168607d20...18.exe

windows7-x64

0168607d20...18.exe

windows10-2004-x64

Sharing

General

Target

0168607d2091b08e6e076a61e15b9fed_JaffaCakes118
Size

2.2MB
Sample

240426-w9fr1ahf86
MD5

0168607d2091b08e6e076a61e15b9fed
SHA1

bb8cbbcf6f6cbd9583726a639c562416c6b8de51
SHA256

1ae59340f7dcc6eb1864d16652b602124d00f9a3edea2c41d3e27539f2d6d04f
SHA512

0031d16be6a459bcb607bd622de55a1e73e517cd746e2059117bc179df031b2b8fb91630a7b1ee934a0eee1e79e2fdefb9046adfecee2f1defdfb6284776e9e8
SSDEEP

49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1VQx7Va4qrfq:NAB1

Score

10^/10

xmrig miner upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

0168607d2091b08e6e076a61e15b9fed_JaffaCakes118.exe

Resource

win7-20240221-en

xmrig miner upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

0168607d2091b08e6e076a61e15b9fed_JaffaCakes118.exe

Resource

win10v2004-20240426-en

xmrig miner upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  0168607d2091b08e6e076a61e15b9fed_JaffaCakes118
- Size
  
  2.2MB
- MD5
  
  0168607d2091b08e6e076a61e15b9fed
- SHA1
  
  bb8cbbcf6f6cbd9583726a639c562416c6b8de51
- SHA256
  
  1ae59340f7dcc6eb1864d16652b602124d00f9a3edea2c41d3e27539f2d6d04f
- SHA512
  
  0031d16be6a459bcb607bd622de55a1e73e517cd746e2059117bc179df031b2b8fb91630a7b1ee934a0eee1e79e2fdefb9046adfecee2f1defdfb6284776e9e8
- SSDEEP
  
  49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1VQx7Va4qrfq:NAB1
Score

10^/10

xmrig miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy