xmrig | 20d69f81e8cacd4df3dc27d9a5d1e40a70d8f5ae1ff89c383d4236291e2063d1 | Triage

Submit
Reports

Overview

overview

Static

static

20d69f81e8...cs.exe

windows7-x64

20d69f81e8...cs.exe

windows10-2004-x64

Sharing

General

Target

20d69f81e8cacd4df3dc27d9a5d1e40a70d8f5ae1ff89c383d4236291e2063d1_NeikiAnalytics.exe
Size

1.8MB
Sample

240625-267n7szblh
MD5

f0fd06ae7974dfb5c75a49a000717ae0
SHA1

16066a3389a70147da2cba08548e366ea692dd76
SHA256

20d69f81e8cacd4df3dc27d9a5d1e40a70d8f5ae1ff89c383d4236291e2063d1
SHA512

946d9e1fc6188f0405e60a7392dc32165466c61dc19524cd0e05f9bf7c5ce969c1534778b123368d85d5946eecd245d627e5884b028ee55c21575a2bc05e2add
SSDEEP

49152:ROdWCCi7/rahwNGyX687xWHMTndrW9TuN:RWWBibaW

Score

10^/10

xmrig miner persistence privilege_escalation upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

20d69f81e8cacd4df3dc27d9a5d1e40a70d8f5ae1ff89c383d4236291e2063d1_NeikiAnalytics.exe

Resource

win7-20240419-en

xmrig miner persistence privilege_escalation upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

20d69f81e8cacd4df3dc27d9a5d1e40a70d8f5ae1ff89c383d4236291e2063d1_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

xmrig miner upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  20d69f81e8cacd4df3dc27d9a5d1e40a70d8f5ae1ff89c383d4236291e2063d1_NeikiAnalytics.exe
- Size
  
  1.8MB
- MD5
  
  f0fd06ae7974dfb5c75a49a000717ae0
- SHA1
  
  16066a3389a70147da2cba08548e366ea692dd76
- SHA256
  
  20d69f81e8cacd4df3dc27d9a5d1e40a70d8f5ae1ff89c383d4236291e2063d1
- SHA512
  
  946d9e1fc6188f0405e60a7392dc32165466c61dc19524cd0e05f9bf7c5ce969c1534778b123368d85d5946eecd245d627e5884b028ee55c21575a2bc05e2add
- SSDEEP
  
  49152:ROdWCCi7/rahwNGyX687xWHMTndrW9TuN:RWWBibaW
Score

10^/10

xmrig miner persistence privilege_escalation upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalationupx

behavioral2

© 2018-2024

Terms | Privacy