xmrig | b5179a132475f3b14172cab937ec22a3010387cd33e514dcda04c6683d4644f3 | Triage

Submit
Reports

Overview

overview

Static

static

b5179a1324...f3.exe

windows7-x64

b5179a1324...f3.exe

windows10-2004-x64

Sharing

General

Target

b5179a132475f3b14172cab937ec22a3010387cd33e514dcda04c6683d4644f3
Size

1.7MB
Sample

240523-cltjeaac28
MD5

18d2bbedf54fda7b3af287adfed40b05
SHA1

f49deab50a76fbe8e5bef1f6b40ac8933f827140
SHA256

b5179a132475f3b14172cab937ec22a3010387cd33e514dcda04c6683d4644f3
SHA512

7005fedbe56949006d04c11bd4fea540dfd6c62c41d810db793279a4a5f3d7a330d7479eb5dd5122c5c5f12bd24bf5ab7e4094d45e72fdc4c9e2641dd132b6ba
SSDEEP

24576:JanwhSe11QSONCpGJCjETPlOhSkEaFUG51+oAL7ZQJTVMKTbc1gsemVk8e+ogzOu:knw9oUUEEDlOh516Q+oxxcdBDog6FhG

Score

10^/10

xmrig miner upx

Static task

static1

upx miner xmrig

5 signatures

Behavioral task

behavioral1

Sample

b5179a132475f3b14172cab937ec22a3010387cd33e514dcda04c6683d4644f3.exe

Resource

win7-20240215-en

xmrig miner upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

b5179a132475f3b14172cab937ec22a3010387cd33e514dcda04c6683d4644f3.exe

Resource

win10v2004-20240426-en

xmrig miner upx

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  b5179a132475f3b14172cab937ec22a3010387cd33e514dcda04c6683d4644f3
- Size
  
  1.7MB
- MD5
  
  18d2bbedf54fda7b3af287adfed40b05
- SHA1
  
  f49deab50a76fbe8e5bef1f6b40ac8933f827140
- SHA256
  
  b5179a132475f3b14172cab937ec22a3010387cd33e514dcda04c6683d4644f3
- SHA512
  
  7005fedbe56949006d04c11bd4fea540dfd6c62c41d810db793279a4a5f3d7a330d7479eb5dd5122c5c5f12bd24bf5ab7e4094d45e72fdc4c9e2641dd132b6ba
- SSDEEP
  
  24576:JanwhSe11QSONCpGJCjETPlOhSkEaFUG51+oAL7ZQJTVMKTbc1gsemVk8e+ogzOu:knw9oUUEEDlOh516Q+oxxcdBDog6FhG
Score

10^/10

xmrig miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- UPX dump on OEP (original entry point)
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy