xmrig | 688dbcb2c854e54e14b966001f88ae5c2ce08545b9d113c00d41ab35db97c400 | Triage

Submit
Reports

Overview

overview

Static

static

688dbcb2c8...00.exe

windows7-x64

688dbcb2c8...00.exe

windows10-2004-x64

Sharing

General

Target

688dbcb2c854e54e14b966001f88ae5c2ce08545b9d113c00d41ab35db97c400
Size

2.9MB
Sample

240522-alr98sef6t
MD5

b0709b0a3a89ff0c0e6eb7afa2230f94
SHA1

08426647570b1e77ec25c2beada6533d49e51155
SHA256

688dbcb2c854e54e14b966001f88ae5c2ce08545b9d113c00d41ab35db97c400
SHA512

9a74f3986b96b0ba85ed594c04da9299a20fdde9f1325052788e6a81cea48340a6d8fc3f61640c459799bfe35963cd4fe77c7171d7a8e4553ab315099de0c563
SSDEEP

49152:N0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8Dze7jcqdt3uB38Nw2:N0GnJMOWPClFdx6e0EALKWVTffZiPAcy

Score

10^/10

xmrig miner upx

Static task

static1

miner upx xmrig

5 signatures

Behavioral task

behavioral1

Sample

688dbcb2c854e54e14b966001f88ae5c2ce08545b9d113c00d41ab35db97c400.exe

Resource

win7-20240508-en

xmrig miner upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

688dbcb2c854e54e14b966001f88ae5c2ce08545b9d113c00d41ab35db97c400.exe

Resource

win10v2004-20240508-en

xmrig miner upx

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  688dbcb2c854e54e14b966001f88ae5c2ce08545b9d113c00d41ab35db97c400
- Size
  
  2.9MB
- MD5
  
  b0709b0a3a89ff0c0e6eb7afa2230f94
- SHA1
  
  08426647570b1e77ec25c2beada6533d49e51155
- SHA256
  
  688dbcb2c854e54e14b966001f88ae5c2ce08545b9d113c00d41ab35db97c400
- SHA512
  
  9a74f3986b96b0ba85ed594c04da9299a20fdde9f1325052788e6a81cea48340a6d8fc3f61640c459799bfe35963cd4fe77c7171d7a8e4553ab315099de0c563
- SSDEEP
  
  49152:N0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8Dze7jcqdt3uB38Nw2:N0GnJMOWPClFdx6e0EALKWVTffZiPAcy
Score

10^/10

xmrig miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- UPX dump on OEP (original entry point)
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy