xmrig | 13c1e2f29de55aff524a6a1a667ace7c977e576ca9d963f24e348b386caccaa1 | Triage

Submit
Reports

Overview

overview

Static

static

13c1e2f29d...a1.exe

windows7-x64

13c1e2f29d...a1.exe

windows10-2004-x64

Sharing

General

Target

13c1e2f29de55aff524a6a1a667ace7c977e576ca9d963f24e348b386caccaa1.exe
Size

1.8MB
Sample

240703-2dwq8syglq
MD5

c15e113d7b7f5af5baa78fe3cef90670
SHA1

a187239ad6c73afb71230a543a27d6b3dd3a4088
SHA256

13c1e2f29de55aff524a6a1a667ace7c977e576ca9d963f24e348b386caccaa1
SHA512

d5a568000339892a6ec9a0ef29b8186a5a84e8e4afba1ec749f418998c9d6f23f265c06403363a1223437a391c4ef1f362e3aa8011bf83742475a964b34af44b
SSDEEP

49152:GezaTF8FcNkNdfE0pZ9oztFwIHT5JbVY4CkvPo7p6vmk0+:GemTLkNdfE0pZab

Score

10^/10

xmrig miner persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

13c1e2f29de55aff524a6a1a667ace7c977e576ca9d963f24e348b386caccaa1.exe

Resource

win7-20240611-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

13c1e2f29de55aff524a6a1a667ace7c977e576ca9d963f24e348b386caccaa1.exe

Resource

win10v2004-20240611-en

xmrig miner persistence privilege_escalation

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  13c1e2f29de55aff524a6a1a667ace7c977e576ca9d963f24e348b386caccaa1.exe
- Size
  
  1.8MB
- MD5
  
  c15e113d7b7f5af5baa78fe3cef90670
- SHA1
  
  a187239ad6c73afb71230a543a27d6b3dd3a4088
- SHA256
  
  13c1e2f29de55aff524a6a1a667ace7c977e576ca9d963f24e348b386caccaa1
- SHA512
  
  d5a568000339892a6ec9a0ef29b8186a5a84e8e4afba1ec749f418998c9d6f23f265c06403363a1223437a391c4ef1f362e3aa8011bf83742475a964b34af44b
- SSDEEP
  
  49152:GezaTF8FcNkNdfE0pZ9oztFwIHT5JbVY4CkvPo7p6vmk0+:GemTLkNdfE0pZab
Score

10^/10

xmrig miner persistence privilege_escalation
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

xmrigminerpersistenceprivilege_escalation

© 2018-2024

Terms | Privacy