Overview

overview

10

Static

static

7

.xxxz/h32

ubuntu-20.04-amd64

.xxxz/h64

ubuntu-20.04-amd64

1

.xxxz/md

ubuntu-20.04-amd64

10

.xxxz/run

ubuntu-18.04-amd64

3

.xxxz/run

debian-9-armhf

1

.xxxz/run

debian-9-mips

.xxxz/run

debian-9-mipsel

Analysis

  • max time kernel
    0s
  • max time network
    133s
  • platform
    ubuntu-20.04_amd64
  • resource
    ubuntu2004-amd64-20240508-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2004-amd64-20240508-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
  • submitted
    13-05-2024 08:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    .xxxz/md

  • Size

    713KB

  • MD5

    5f507221b1a259751e76aa7f4276c3f5

  • SHA1

    0f5b70e88f0f42a061e6a8c4bc8c10b851a7fde7

  • SHA256

    ee7ba15bae03a8095e0bf432a2f2674f2e78085258f64c137d2ad22bd96815a7

  • SHA512

    5cd21f257152a91a45dd00bd5f80b2a61f454f940eab2c66d8d866a136a9725091a7a16452c5870a949d09f35902f6d32204cc70536e2c21cdd9452e8dffe878

  • SSDEEP

    12288:OK/8PZBb3Lr2XnYLW0lcIyme6fu7f9su7zz4LO4jDx9f7uj+c/j6/Cy0IoSI:OKafnlW0G96fu5su7aVto+G6yH

Score
10/10
xmrigantivmminer

Malware Config

Signatures

  • xmrig

    XMRig is a high performance, open source, cross platform CPU/GPU miner.

    minerxmrig
  • XMRig Miner payload 1 IoCs
    miner
  • Checks CPU configuration 1 TTPs 1 IoCs

    Checks CPU information which indicate if the system is a virtual machine.

    antivm
  • Reads CPU attributes 1 TTPs 1 IoCs

Processes

  • /tmp/.xxxz/md
    /tmp/.xxxz/md
    1⤵
    • Checks CPU configuration
    • Reads CPU attributes
    PID:1399

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1399-1-0x0000000008048000-0x0000000008299024-memory.dmp
    Download