xmrig | e52b2b297c27a9aea9365070db41c2929b275f0754ed102553bf9915c19d1d84 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

7

68944b16bb...18.exe

windows7-x64

68944b16bb...18.exe

windows10-2004-x64

Sharing

General

Target

68944b16bb940e7836a27f0600a956e2_JaffaCakes118
Size

784KB
Sample

240723-wafb7a1gkk
MD5

68944b16bb940e7836a27f0600a956e2
SHA1

49584d3422b70eb27703e5957f1f4f794a1962c2
SHA256

e52b2b297c27a9aea9365070db41c2929b275f0754ed102553bf9915c19d1d84
SHA512

3ba2ae783d2da7cf6c5edf943b51fdef361e9829bf1b2b71adcd2fec87c9a0137ee94635c82c48acdfc1535f856ed253dee7b252946954c19642ba723f25494e
SSDEEP

12288:WHYFYwXq/Nq3/5dfMm4nO/IoUJnkzalFthqO+DOgko7Vi6J5dJESvPOMg3QoB5:u+KNq3B2XnO/IozMhoCPo7Y6J/nnOS

Score

10^/10

xmrig discovery miner upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

68944b16bb940e7836a27f0600a956e2_JaffaCakes118.exe

Resource

win7-20240704-en

xmrig discovery miner upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

68944b16bb940e7836a27f0600a956e2_JaffaCakes118.exe

Resource

win10v2004-20240709-en

xmrig discovery miner upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  68944b16bb940e7836a27f0600a956e2_JaffaCakes118
- Size
  
  784KB
- MD5
  
  68944b16bb940e7836a27f0600a956e2
- SHA1
  
  49584d3422b70eb27703e5957f1f4f794a1962c2
- SHA256
  
  e52b2b297c27a9aea9365070db41c2929b275f0754ed102553bf9915c19d1d84
- SHA512
  
  3ba2ae783d2da7cf6c5edf943b51fdef361e9829bf1b2b71adcd2fec87c9a0137ee94635c82c48acdfc1535f856ed253dee7b252946954c19642ba723f25494e
- SSDEEP
  
  12288:WHYFYwXq/Nq3/5dfMm4nO/IoUJnkzalFthqO+DOgko7Vi6J5dJESvPOMg3QoB5:u+KNq3B2XnO/IozMhoCPo7Y6J/nnOS
Score

10^/10

xmrig discovery miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigdiscoveryminerupx

behavioral2

xmrigdiscoveryminerupx

© 2018-2025

Terms | Privacy