Overview

overview

10

Static

static

10

78a80cedbe...6f.exe

windows7-x64

10

78a80cedbe...6f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    78a80cedbe8c1ecdba5d1e4c7812c8c1c3c7db85685ed28d8b1d4c560707f46f

  • Size

    1.8MB

  • Sample

    240522-bt3llsgb5t

  • MD5

    40e9c497a998d92e4e96c1b8d9aaec48

  • SHA1

    2bfb84a56e3bc29a7b75f77364a98dd2def47fe1

  • SHA256

    78a80cedbe8c1ecdba5d1e4c7812c8c1c3c7db85685ed28d8b1d4c560707f46f

  • SHA512

    a4d0d63c4c95d205f126495936375b2c594ed6c50bed720e183d4d566594bf448fcea26e16d017370254fedcd8fdfb3eae5d0d3b14125bd67dfa4dd1c4fb52a7

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlGC78XCej06sSv8rcbQyfuYlMyt38u2rMG/b:knw9oUUEEDlGUrMjiYuaeb

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      78a80cedbe8c1ecdba5d1e4c7812c8c1c3c7db85685ed28d8b1d4c560707f46f

    • Size

      1.8MB

    • MD5

      40e9c497a998d92e4e96c1b8d9aaec48

    • SHA1

      2bfb84a56e3bc29a7b75f77364a98dd2def47fe1

    • SHA256

      78a80cedbe8c1ecdba5d1e4c7812c8c1c3c7db85685ed28d8b1d4c560707f46f

    • SHA512

      a4d0d63c4c95d205f126495936375b2c594ed6c50bed720e183d4d566594bf448fcea26e16d017370254fedcd8fdfb3eae5d0d3b14125bd67dfa4dd1c4fb52a7

    • SSDEEP

      24576:JanwhSe11QSONCpGJCjETPlGC78XCej06sSv8rcbQyfuYlMyt38u2rMG/b:knw9oUUEEDlGUrMjiYuaeb

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • UPX dump on OEP (original entry point)

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks