xmrig | 8dbb361a767f7d222110502a0d8a4d0e14360a5e6cd6e78fb763eefbf0a28444 | Triage

Submit
Reports

Overview

overview

Static

static

8dbb361a76...cs.exe

windows7-x64

8dbb361a76...cs.exe

windows10-2004-x64

Sharing

General

Target

8dbb361a767f7d222110502a0d8a4d0e14360a5e6cd6e78fb763eefbf0a28444_NeikiAnalytics.exe
Size

1.3MB
Sample

240628-jvnsva1grp
MD5

5246b8db94225989ce6dfaa2af3f05a0
SHA1

d564d41ed98a8ea8083e4f2e663799781d5be181
SHA256

8dbb361a767f7d222110502a0d8a4d0e14360a5e6cd6e78fb763eefbf0a28444
SHA512

9cb038d86c30e2afe2f4b3abc95ef12cdd101856db5b9d356e631715d44153024761d9fb94b49307e34910189fb000225def60096d0f40d1e4abe8ae68b2593f
SSDEEP

24576:JanwhSe11QSONCpGJCjETPlWXWZ5PbcqDWzgqsmJox1fLt8K28GKY7Q4sHX:knw9oUUEEDl37jcqDrUS1BgQ4mX

Score

10^/10

xmrig miner persistence privilege_escalation upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

8dbb361a767f7d222110502a0d8a4d0e14360a5e6cd6e78fb763eefbf0a28444_NeikiAnalytics.exe

Resource

win7-20240220-en

xmrig miner persistence privilege_escalation upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

8dbb361a767f7d222110502a0d8a4d0e14360a5e6cd6e78fb763eefbf0a28444_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

xmrig miner upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  8dbb361a767f7d222110502a0d8a4d0e14360a5e6cd6e78fb763eefbf0a28444_NeikiAnalytics.exe
- Size
  
  1.3MB
- MD5
  
  5246b8db94225989ce6dfaa2af3f05a0
- SHA1
  
  d564d41ed98a8ea8083e4f2e663799781d5be181
- SHA256
  
  8dbb361a767f7d222110502a0d8a4d0e14360a5e6cd6e78fb763eefbf0a28444
- SHA512
  
  9cb038d86c30e2afe2f4b3abc95ef12cdd101856db5b9d356e631715d44153024761d9fb94b49307e34910189fb000225def60096d0f40d1e4abe8ae68b2593f
- SSDEEP
  
  24576:JanwhSe11QSONCpGJCjETPlWXWZ5PbcqDWzgqsmJox1fLt8K28GKY7Q4sHX:knw9oUUEEDl37jcqDrUS1BgQ4mX
Score

10^/10

xmrig miner persistence privilege_escalation upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalationupx

behavioral2

© 2018-2024

Terms | Privacy