xmrig | 51dae1c766b29c4e7d9facf4f9ffb795e61789e1d1b631e4870561d0de058de9 | Triage

Submit
Reports

Overview

overview

Static

static

51dae1c766...e9.exe

windows7-x64

51dae1c766...e9.exe

windows10-2004-x64

Sharing

General

Target

51dae1c766b29c4e7d9facf4f9ffb795e61789e1d1b631e4870561d0de058de9
Size

1.7MB
Sample

240520-2b9v3sac6t
MD5

f6ae5762591e6783f2bce18c3afa4292
SHA1

3a49673d4858a567ad5a2d72ebc4e10050231d52
SHA256

51dae1c766b29c4e7d9facf4f9ffb795e61789e1d1b631e4870561d0de058de9
SHA512

c1a77827535dbcd64986793ccc7474bf3a85485db5f36a40aca31766d6c0cca3a8c5225b9b4efd58d047f459026e67e42d04b7b98b0814d6a04101f77880aaf9
SSDEEP

49152:GezaTF8FcNkNdfE0pZ9oztFwIR1Dy2NRGK3J78:GemTLkNdfE0pZas

Score

10^/10

xmrig miner persistence

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

51dae1c766b29c4e7d9facf4f9ffb795e61789e1d1b631e4870561d0de058de9.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

51dae1c766b29c4e7d9facf4f9ffb795e61789e1d1b631e4870561d0de058de9.exe

Resource

win10v2004-20240508-en

xmrig miner persistence

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  51dae1c766b29c4e7d9facf4f9ffb795e61789e1d1b631e4870561d0de058de9
- Size
  
  1.7MB
- MD5
  
  f6ae5762591e6783f2bce18c3afa4292
- SHA1
  
  3a49673d4858a567ad5a2d72ebc4e10050231d52
- SHA256
  
  51dae1c766b29c4e7d9facf4f9ffb795e61789e1d1b631e4870561d0de058de9
- SHA512
  
  c1a77827535dbcd64986793ccc7474bf3a85485db5f36a40aca31766d6c0cca3a8c5225b9b4efd58d047f459026e67e42d04b7b98b0814d6a04101f77880aaf9
- SSDEEP
  
  49152:GezaTF8FcNkNdfE0pZ9oztFwIR1Dy2NRGK3J78:GemTLkNdfE0pZas
Score

10^/10

xmrig miner persistence
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Modifies Installed Components in the registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

xmrigminerpersistence

© 2018-2025

Terms | Privacy