xmrig | 33a2dd41e13f06b54579974742fb5dd9b2387591fe7731d0e45b9fcd0e1ca31d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1fd3cffbe6...18.exe

windows7-x64

1fd3cffbe6...18.exe

windows10-2004-x64

Sharing

General

Target

1fd3cffbe69e2292b6300680de38a990_JaffaCakes118
Size

2.1MB
Sample

240507-hxglwaea8w
MD5

1fd3cffbe69e2292b6300680de38a990
SHA1

f99a680e26b78a8c5aba1f873e0e60e727069a14
SHA256

33a2dd41e13f06b54579974742fb5dd9b2387591fe7731d0e45b9fcd0e1ca31d
SHA512

8ce5e85445c868c3303355b90eb4a804ddbc14f7b18ae18e376749c317b65f5c8d79f612521d9e8d3aa882b49960a88524c2f6be530f72844fab5a9383cf93f5
SSDEEP

49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pXHafM4R:NABo

Score

10^/10

xmrig execution miner upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

1fd3cffbe69e2292b6300680de38a990_JaffaCakes118.exe

Resource

win7-20240215-en

xmrig execution miner upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

1fd3cffbe69e2292b6300680de38a990_JaffaCakes118.exe

Resource

win10v2004-20240419-en

xmrig execution miner upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  1fd3cffbe69e2292b6300680de38a990_JaffaCakes118
- Size
  
  2.1MB
- MD5
  
  1fd3cffbe69e2292b6300680de38a990
- SHA1
  
  f99a680e26b78a8c5aba1f873e0e60e727069a14
- SHA256
  
  33a2dd41e13f06b54579974742fb5dd9b2387591fe7731d0e45b9fcd0e1ca31d
- SHA512
  
  8ce5e85445c868c3303355b90eb4a804ddbc14f7b18ae18e376749c317b65f5c8d79f612521d9e8d3aa882b49960a88524c2f6be530f72844fab5a9383cf93f5
- SSDEEP
  
  49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pXHafM4R:NABo
Score

10^/10

xmrig execution miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Command and Scripting Interpreter: PowerShell
  Powershell Invoke Web Request.
  execution
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigexecutionminerupx

behavioral2

xmrigexecutionminerupx

© 2018-2025

Terms | Privacy