xmrig | 10177c6fdc74c0964209c843c6b6555eb9fe468b9cbd40f341f1894d914e8f66 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

10177c6fdc...cs.exe

windows7-x64

10177c6fdc...cs.exe

windows10-2004-x64

Sharing

General

Target

10177c6fdc74c0964209c843c6b6555eb9fe468b9cbd40f341f1894d914e8f66_NeikiAnalytics.exe
Size

1.7MB
Sample

240630-aah77azdkh
MD5

471fb4280f0511d93d1c11304b9b5410
SHA1

5a265e1e4eba81cc73f2dbea6e30754ce0af6326
SHA256

10177c6fdc74c0964209c843c6b6555eb9fe468b9cbd40f341f1894d914e8f66
SHA512

fed3d8b0a6ebdfb9104f83d98a593b3085a26a495bc5762550a6c7ea7908461f405203570c423442bc8ee63bb25b19d1914fd374e023b56b19a351be2fae9e85
SSDEEP

49152:knw9oUUEEDlnCNfeT5J0aXiJP1+AiAcHA:kQUEEo

Score

10^/10

xmrig miner persistence privilege_escalation upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

10177c6fdc74c0964209c843c6b6555eb9fe468b9cbd40f341f1894d914e8f66_NeikiAnalytics.exe

Resource

win7-20240508-en

xmrig miner persistence privilege_escalation upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

10177c6fdc74c0964209c843c6b6555eb9fe468b9cbd40f341f1894d914e8f66_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

xmrig miner upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  10177c6fdc74c0964209c843c6b6555eb9fe468b9cbd40f341f1894d914e8f66_NeikiAnalytics.exe
- Size
  
  1.7MB
- MD5
  
  471fb4280f0511d93d1c11304b9b5410
- SHA1
  
  5a265e1e4eba81cc73f2dbea6e30754ce0af6326
- SHA256
  
  10177c6fdc74c0964209c843c6b6555eb9fe468b9cbd40f341f1894d914e8f66
- SHA512
  
  fed3d8b0a6ebdfb9104f83d98a593b3085a26a495bc5762550a6c7ea7908461f405203570c423442bc8ee63bb25b19d1914fd374e023b56b19a351be2fae9e85
- SSDEEP
  
  49152:knw9oUUEEDlnCNfeT5J0aXiJP1+AiAcHA:kQUEEo
Score

10^/10

xmrig miner persistence privilege_escalation upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalationupx

behavioral2

© 2018-2025

Terms | Privacy