Overview

overview

10

Static

static

1

windows.ps1

windows10-1703-x64

10

windows.ps1

windows10-2004-x64

10

windows.ps1

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    windows.ps1

  • Size

    421B

  • Sample

    240715-xk95zsxcld

  • MD5

    d5684c541008779669644c15a23adaca

  • SHA1

    9250b10b96a788dcc595b998915fa4dd1de25332

  • SHA256

    e92cb9de85087f31c7d038e0c2b59c80e05f8c53d5bcc2a5ebf38f9da13b4f5e

  • SHA512

    2f7f6f89418cf93335154b3961362071dfa77b41858e09ce0745c8813c21748880a24a2388b771e8e7909e76902cd83cacdf89279617b335a068c8bbc40a4ef3

Score
10/10
xmrigexecutionminer

Malware Config

Targets

    • Target

      windows.ps1

    • Size

      421B

    • MD5

      d5684c541008779669644c15a23adaca

    • SHA1

      9250b10b96a788dcc595b998915fa4dd1de25332

    • SHA256

      e92cb9de85087f31c7d038e0c2b59c80e05f8c53d5bcc2a5ebf38f9da13b4f5e

    • SHA512

      2f7f6f89418cf93335154b3961362071dfa77b41858e09ce0745c8813c21748880a24a2388b771e8e7909e76902cd83cacdf89279617b335a068c8bbc40a4ef3

    Score
    10/10
    xmrigexecutionminer

    • XMRig Miner payload

      miner

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • Blocklisted process makes network request

    • Executes dropped EXE

    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v15

Tasks