xmrig | 32a23cd3626ca48daed4ff24710cae019e7ecb8d7b57ee489d01df9d721a4e5d | Triage

Submit
Reports

Overview

overview

Static

static

7

0a1a113b25...18.exe

windows7-x64

0a1a113b25...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

0a1a113b256fc84500118a5e1638dd4a_JaffaCakes118
Size

6.8MB
Sample

240430-s7wtnaac6t
MD5

0a1a113b256fc84500118a5e1638dd4a
SHA1

afb2fee5444abf081b5bfc729fd30de2558d8435
SHA256

32a23cd3626ca48daed4ff24710cae019e7ecb8d7b57ee489d01df9d721a4e5d
SHA512

56ce23787b58d6439d09bea6656e89843531a2bb5cc098f74bc3d6ec84d05624e5c4e573d0021ed9d7e7f4d995b5b8d489d1202c06d0f9cb748932b753b02815
SSDEEP

98304:Rfj1UxxLNuJx6Oqd5E/ntE5kI6u5dyp25NX2u5B79ybZC4:N1QcQOqd5Efq5R5op25t2Yc9

Score

10^/10

xmrig miner upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

0a1a113b256fc84500118a5e1638dd4a_JaffaCakes118.exe

Resource

win7-20240220-en

xmrig miner upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

0a1a113b256fc84500118a5e1638dd4a_JaffaCakes118.exe

Resource

win10v2004-20240419-en

xmrig miner upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  0a1a113b256fc84500118a5e1638dd4a_JaffaCakes118
- Size
  
  6.8MB
- MD5
  
  0a1a113b256fc84500118a5e1638dd4a
- SHA1
  
  afb2fee5444abf081b5bfc729fd30de2558d8435
- SHA256
  
  32a23cd3626ca48daed4ff24710cae019e7ecb8d7b57ee489d01df9d721a4e5d
- SHA512
  
  56ce23787b58d6439d09bea6656e89843531a2bb5cc098f74bc3d6ec84d05624e5c4e573d0021ed9d7e7f4d995b5b8d489d1202c06d0f9cb748932b753b02815
- SSDEEP
  
  98304:Rfj1UxxLNuJx6Oqd5E/ntE5kI6u5dyp25NX2u5B79ybZC4:N1QcQOqd5Efq5R5op25t2Yc9
Score

10^/10

xmrig miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy