xmrig | c1dbe639375dd1d4c9b62fb73dd0a005d8a03ae93909c64101354e3427738d01 | Triage

Submit
Reports

Overview

overview

Static

static

2c1a802876...0N.exe

windows7-x64

2c1a802876...0N.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

2c1a802876c530a900f8a6dcbb586080N.exe
Size

1.5MB
Sample

240720-a44qzsscma
MD5

2c1a802876c530a900f8a6dcbb586080
SHA1

9dac269836f228c4175353acd89246a39c532546
SHA256

c1dbe639375dd1d4c9b62fb73dd0a005d8a03ae93909c64101354e3427738d01
SHA512

895c200b9d5959d916ff32507f3107bf303e0d8d5784396956841a8499319b44fe8928a8213364b3281e916b2c69409bed3b891f236671bae16c93c1142665a4
SSDEEP

24576:JanwhSe11QSONCpGJCjETPlOqzJO0L0+EYPcfgV/4zuq/lw4244PNJ+SZ7tR7lQ3:knw9oUUEEDlOuJvhV/yl14P9nC

Score

10^/10

xmrig miner persistence privilege_escalation upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

2c1a802876c530a900f8a6dcbb586080N.exe

Resource

win7-20240705-en

xmrig miner upx

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

2c1a802876c530a900f8a6dcbb586080N.exe

Resource

win10v2004-20240709-en

xmrig miner persistence privilege_escalation upx

windows10-2004-x64

11 signatures

120 seconds

Malware Config

Targets

- Target
  
  2c1a802876c530a900f8a6dcbb586080N.exe
- Size
  
  1.5MB
- MD5
  
  2c1a802876c530a900f8a6dcbb586080
- SHA1
  
  9dac269836f228c4175353acd89246a39c532546
- SHA256
  
  c1dbe639375dd1d4c9b62fb73dd0a005d8a03ae93909c64101354e3427738d01
- SHA512
  
  895c200b9d5959d916ff32507f3107bf303e0d8d5784396956841a8499319b44fe8928a8213364b3281e916b2c69409bed3b891f236671bae16c93c1142665a4
- SSDEEP
  
  24576:JanwhSe11QSONCpGJCjETPlOqzJO0L0+EYPcfgV/4zuq/lw4244PNJ+SZ7tR7lQ3:knw9oUUEEDlOuJvhV/yl14P9nC
Score

10^/10

xmrig miner upx persistence privilege_escalation
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

xmrigminerpersistenceprivilege_escalationupx

© 2018-2025

Terms | Privacy