xmrig | d0296ace318fcfa997dfde61b9212dcfce144c3e79e9a5db7861fe29573bf48f | Triage

Submit
Reports

Overview

overview

Static

static

043451f0fb...0N.exe

windows7-x64

043451f0fb...0N.exe

windows10-2004-x64

Sharing

General

Target

043451f0fb5c4fd66fc3ee88228ca730N.exe
Size

1.9MB
Sample

240801-z7b8ks1bpe
MD5

043451f0fb5c4fd66fc3ee88228ca730
SHA1

2ec195c21f05b89ba965849b199eabeece4c6735
SHA256

d0296ace318fcfa997dfde61b9212dcfce144c3e79e9a5db7861fe29573bf48f
SHA512

52bdfa3dfdbe1e38f5f6675ab5ac516ba093549942eaa1558c295bc0282994f03011ab55612c351051c2c1df66280e0cd69db785e0d9fc61cf07068b4042b3ad
SSDEEP

49152:ROdWCCi7/raU56uL3pgrCEdMKPFoTzD7rW:RWWBib356utgpPFoC

Score

10^/10

xmrig miner persistence privilege_escalation upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

043451f0fb5c4fd66fc3ee88228ca730N.exe

Resource

win7-20240704-en

xmrig miner persistence privilege_escalation upx

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

043451f0fb5c4fd66fc3ee88228ca730N.exe

Resource

win10v2004-20240730-en

xmrig miner persistence privilege_escalation upx

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  043451f0fb5c4fd66fc3ee88228ca730N.exe
- Size
  
  1.9MB
- MD5
  
  043451f0fb5c4fd66fc3ee88228ca730
- SHA1
  
  2ec195c21f05b89ba965849b199eabeece4c6735
- SHA256
  
  d0296ace318fcfa997dfde61b9212dcfce144c3e79e9a5db7861fe29573bf48f
- SHA512
  
  52bdfa3dfdbe1e38f5f6675ab5ac516ba093549942eaa1558c295bc0282994f03011ab55612c351051c2c1df66280e0cd69db785e0d9fc61cf07068b4042b3ad
- SSDEEP
  
  49152:ROdWCCi7/raU56uL3pgrCEdMKPFoTzD7rW:RWWBib356utgpPFoC
Score

10^/10

xmrig miner persistence privilege_escalation upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalationupx

behavioral2

xmrigminerpersistenceprivilege_escalationupx

© 2018-2024

Terms | Privacy