xmrig | 3ba90afecce349c12573ac7a6ee176414d69e6da743a79b3c74043d371b2cc21 | Triage

Submit
Reports

Overview

overview

Static

static

02369cab86...18.exe

windows7-x64

02369cab86...18.exe

windows10-2004-x64

Sharing

General

Target

02369cab86c5b259318ee61907a49768_JaffaCakes118
Size

1.2MB
Sample

240427-czr8haab2y
MD5

02369cab86c5b259318ee61907a49768
SHA1

96a0fe28421f00f01191a7144c02d767d6751522
SHA256

3ba90afecce349c12573ac7a6ee176414d69e6da743a79b3c74043d371b2cc21
SHA512

f754af320e7694c3f9024562958372ed0cfe3a141bfeff110f20d5fece41aadb8aa15e1bcc53eadee954f4ba23a4487b880332e542d8b933199eefde8d00e9e6
SSDEEP

24576:JanwhSe11QSONCpGJCjETPlWXWZ5Pbcq92zjP+sjI1WH:knw9oUUEEDl37jcq4nPfH

Score

10^/10

xmrig miner persistence upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

02369cab86c5b259318ee61907a49768_JaffaCakes118.exe

Resource

win7-20240215-en

xmrig miner upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

02369cab86c5b259318ee61907a49768_JaffaCakes118.exe

Resource

win10v2004-20240419-en

xmrig miner persistence upx

windows10-2004-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  02369cab86c5b259318ee61907a49768_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  02369cab86c5b259318ee61907a49768
- SHA1
  
  96a0fe28421f00f01191a7144c02d767d6751522
- SHA256
  
  3ba90afecce349c12573ac7a6ee176414d69e6da743a79b3c74043d371b2cc21
- SHA512
  
  f754af320e7694c3f9024562958372ed0cfe3a141bfeff110f20d5fece41aadb8aa15e1bcc53eadee954f4ba23a4487b880332e542d8b933199eefde8d00e9e6
- SSDEEP
  
  24576:JanwhSe11QSONCpGJCjETPlWXWZ5Pbcq92zjP+sjI1WH:knw9oUUEEDl37jcq4nPfH
Score

10^/10

xmrig miner upx persistence
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Modifies Installed Components in the registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

xmrigminerpersistenceupx

© 2018-2024

Terms | Privacy