xmrig | d349da5423a4c2bb6cde8946f5bacbc35b310c23cd7ff54000473ad998845c31 | Triage

Submit
Reports

Overview

overview

Static

static

4af9b1e413...cs.exe

windows7-x64

4af9b1e413...cs.exe

windows10-2004-x64

Sharing

General

Target

4af9b1e4132e00a2f66497fd564ea7c0_NeikiAnalytics.exe
Size

1.5MB
Sample

240523-g5mmesgc6y
MD5

4af9b1e4132e00a2f66497fd564ea7c0
SHA1

d80696f986dd880f17cc628a141e96da30d72bd0
SHA256

d349da5423a4c2bb6cde8946f5bacbc35b310c23cd7ff54000473ad998845c31
SHA512

d6d46a0a6d3ffdd8453bf68efdf75dca17f0de45b2cfa3a30c99958cbdd98ad379f72a8e54c81d6c236d3f0c25f562af42620fb96e46189e3bed10441bf52a27
SSDEEP

24576:zv3/fTLF671TilQFG4P5PMkFfkeMlN675EgEPgsU5qTqOkDili:Lz071uv4BPMkFfdg6NsG

Score

10^/10

xmrig execution miner upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

4af9b1e4132e00a2f66497fd564ea7c0_NeikiAnalytics.exe

Resource

win7-20240221-en

xmrig execution miner upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

4af9b1e4132e00a2f66497fd564ea7c0_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

xmrig execution miner upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  4af9b1e4132e00a2f66497fd564ea7c0_NeikiAnalytics.exe
- Size
  
  1.5MB
- MD5
  
  4af9b1e4132e00a2f66497fd564ea7c0
- SHA1
  
  d80696f986dd880f17cc628a141e96da30d72bd0
- SHA256
  
  d349da5423a4c2bb6cde8946f5bacbc35b310c23cd7ff54000473ad998845c31
- SHA512
  
  d6d46a0a6d3ffdd8453bf68efdf75dca17f0de45b2cfa3a30c99958cbdd98ad379f72a8e54c81d6c236d3f0c25f562af42620fb96e46189e3bed10441bf52a27
- SSDEEP
  
  24576:zv3/fTLF671TilQFG4P5PMkFfkeMlN675EgEPgsU5qTqOkDili:Lz071uv4BPMkFfdg6NsG
Score

10^/10

xmrig execution miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Command and Scripting Interpreter: PowerShell
  Powershell Invoke Web Request.
  execution
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

xmrigexecutionminerupx

behavioral2

xmrigexecutionminerupx

© 2018-2024

Terms | Privacy