xmrig | 8306985efa9e1df79d4f1651a907d4aad9f462c1e36130fd3cd77122f033df57 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

0465fc0f0c...18.exe

windows7-x64

0465fc0f0c...18.exe

windows10-2004-x64

Sharing

General

Target

0465fc0f0cefb5e2e2d5bebb2d2ef8a2_JaffaCakes118
Size

1.8MB
Sample

240428-fcb5jsgc95
MD5

0465fc0f0cefb5e2e2d5bebb2d2ef8a2
SHA1

866e685b73ebbd69f93422cc32c48ec039b507a2
SHA256

8306985efa9e1df79d4f1651a907d4aad9f462c1e36130fd3cd77122f033df57
SHA512

7e1de901855b6fdc9cb96284a9a7194a8ad8f43a29d0f93b7305d7dcf6cb03e1f09c5645de3384d3a13aad80cce134de2a825eb1c5dc114532240d201e651294
SSDEEP

49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrl8Q:NABa

Score

10^/10

xmrig miner upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

0465fc0f0cefb5e2e2d5bebb2d2ef8a2_JaffaCakes118.exe

Resource

win7-20240221-en

xmrig miner upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

0465fc0f0cefb5e2e2d5bebb2d2ef8a2_JaffaCakes118.exe

Resource

win10v2004-20240426-en

xmrig miner upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  0465fc0f0cefb5e2e2d5bebb2d2ef8a2_JaffaCakes118
- Size
  
  1.8MB
- MD5
  
  0465fc0f0cefb5e2e2d5bebb2d2ef8a2
- SHA1
  
  866e685b73ebbd69f93422cc32c48ec039b507a2
- SHA256
  
  8306985efa9e1df79d4f1651a907d4aad9f462c1e36130fd3cd77122f033df57
- SHA512
  
  7e1de901855b6fdc9cb96284a9a7194a8ad8f43a29d0f93b7305d7dcf6cb03e1f09c5645de3384d3a13aad80cce134de2a825eb1c5dc114532240d201e651294
- SSDEEP
  
  49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrl8Q:NABa
Score

10^/10

xmrig miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy