xmrig | 5fadbda0ea0c5131c649991dc0e4115d069d01d7d8bd75ae9ef531b533826c5b | Triage

Submit
Reports

Overview

overview

Static

static

3

MidnightExploit.exe

windows11-21h2-x64

Sharing

Copy URL Twitter E-mail

General

Target

MidnightExploit.exe
Size

2.6MB
Sample

240527-ww6fhach7y
MD5

8f77f3354edbdb2b36c8664b42c9d996
SHA1

862131825b0a392b96ac8e44d1aefb7da1332eef
SHA256

5fadbda0ea0c5131c649991dc0e4115d069d01d7d8bd75ae9ef531b533826c5b
SHA512

aea25ff9a3795e940df86ad5b83ff367d6933bbe4db397f2d9febb0e7e7ecb8a96f667aadbeab5aeeb7f6d2bad26e590f509f512c733b25dc942b2605f0c0ed9
SSDEEP

49152:dgVb8YBZ7gysQWBhjCmjiwly12Ck18BrkMw7:qVbVkzrBhOmjPlyMYkM

Score

10^/10

xmrig evasion execution miner persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

MidnightExploit.exe

Resource

win11-20240426-en

xmrig evasion execution miner persistence upx

windows11-21h2-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  MidnightExploit.exe
- Size
  
  2.6MB
- MD5
  
  8f77f3354edbdb2b36c8664b42c9d996
- SHA1
  
  862131825b0a392b96ac8e44d1aefb7da1332eef
- SHA256
  
  5fadbda0ea0c5131c649991dc0e4115d069d01d7d8bd75ae9ef531b533826c5b
- SHA512
  
  aea25ff9a3795e940df86ad5b83ff367d6933bbe4db397f2d9febb0e7e7ecb8a96f667aadbeab5aeeb7f6d2bad26e590f509f512c733b25dc942b2605f0c0ed9
- SSDEEP
  
  49152:dgVb8YBZ7gysQWBhjCmjiwly12Ck18BrkMw7:qVbVkzrBhOmjPlyMYkM
Score

10^/10

xmrig evasion execution miner persistence upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Creates new service(s)
  persistence execution
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

xmrigevasionexecutionminerpersistenceupx

© 2018-2025

Terms | Privacy