xmrig | 5e360b3f6ccbb8a2d3bc0b0b7c0a74aeb3d3fe609e76fb0646a8c9677f4c2dd5 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

5e360b3f6c...cs.exe

windows7-x64

5e360b3f6c...cs.exe

windows10-2004-x64

Sharing

General

Target

5e360b3f6ccbb8a2d3bc0b0b7c0a74aeb3d3fe609e76fb0646a8c9677f4c2dd5_NeikiAnalytics.exe
Size

3.1MB
Sample

240625-pczehssbkq
MD5

30016c779168b9dbce55e5dbc4a117c0
SHA1

1933aa7b456ef27ae111576e9f0c1f72646c64af
SHA256

5e360b3f6ccbb8a2d3bc0b0b7c0a74aeb3d3fe609e76fb0646a8c9677f4c2dd5
SHA512

29ab1a40a5e552f42697b1a7c5da5362ec4f1ac894848e834e5019ee333f3967758b71a6bd9d1bca2cc8f7009304d47ab33751ae8c80842aeb4a55b88c080c3a
SSDEEP

98304:w0GnJMOWPClFdx6e0EALKWVTffZiPAcRq6jHjc4P:wFWPClFf

Score

10^/10

xmrig miner upx

Static task

static1

miner upx xmrig

4 signatures

Behavioral task

behavioral1

Sample

5e360b3f6ccbb8a2d3bc0b0b7c0a74aeb3d3fe609e76fb0646a8c9677f4c2dd5_NeikiAnalytics.exe

Resource

win7-20240508-en

xmrig miner upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

5e360b3f6ccbb8a2d3bc0b0b7c0a74aeb3d3fe609e76fb0646a8c9677f4c2dd5_NeikiAnalytics.exe

Resource

win10v2004-20240611-en

xmrig miner upx

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  5e360b3f6ccbb8a2d3bc0b0b7c0a74aeb3d3fe609e76fb0646a8c9677f4c2dd5_NeikiAnalytics.exe
- Size
  
  3.1MB
- MD5
  
  30016c779168b9dbce55e5dbc4a117c0
- SHA1
  
  1933aa7b456ef27ae111576e9f0c1f72646c64af
- SHA256
  
  5e360b3f6ccbb8a2d3bc0b0b7c0a74aeb3d3fe609e76fb0646a8c9677f4c2dd5
- SHA512
  
  29ab1a40a5e552f42697b1a7c5da5362ec4f1ac894848e834e5019ee333f3967758b71a6bd9d1bca2cc8f7009304d47ab33751ae8c80842aeb4a55b88c080c3a
- SSDEEP
  
  98304:w0GnJMOWPClFdx6e0EALKWVTffZiPAcRq6jHjc4P:wFWPClFf
Score

10^/10

xmrig miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy