xmrig | c741e3c64c9e0ebfa2a714c67c4bb39815fe49e7dd9b44e081a943ed945765db | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

5d236cab16...0N.exe

windows7-x64

5d236cab16...0N.exe

windows10-2004-x64

Sharing

General

Target

5d236cab1609eeb257ba59f432c45170N.exe
Size

1.2MB
Sample

240803-gr7qfazemb
MD5

5d236cab1609eeb257ba59f432c45170
SHA1

15f1e9da3efbb143a50ce99d1ae6d89e298f6176
SHA256

c741e3c64c9e0ebfa2a714c67c4bb39815fe49e7dd9b44e081a943ed945765db
SHA512

607148963afc678415f1f49b692758cbc4297bdf55cccb0d0e5ea34e2dea9fc7d1670187b6615512a50ff8ccd224252a8d7bbcc7ee9626074a377eaf1b49299a
SSDEEP

24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYyq55wpGI9AZOD8iL:Lz071uv4BPMkibTIA5ybH9siL

Score

10^/10

xmrig execution miner upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

5d236cab1609eeb257ba59f432c45170N.exe

Resource

win7-20240704-en

xmrig execution miner upx

windows7-x64

10 signatures

120 seconds

Behavioral task

behavioral2

Sample

5d236cab1609eeb257ba59f432c45170N.exe

Resource

win10v2004-20240802-en

xmrig execution miner upx

windows10-2004-x64

10 signatures

120 seconds

Malware Config

Targets

- Target
  
  5d236cab1609eeb257ba59f432c45170N.exe
- Size
  
  1.2MB
- MD5
  
  5d236cab1609eeb257ba59f432c45170
- SHA1
  
  15f1e9da3efbb143a50ce99d1ae6d89e298f6176
- SHA256
  
  c741e3c64c9e0ebfa2a714c67c4bb39815fe49e7dd9b44e081a943ed945765db
- SHA512
  
  607148963afc678415f1f49b692758cbc4297bdf55cccb0d0e5ea34e2dea9fc7d1670187b6615512a50ff8ccd224252a8d7bbcc7ee9626074a377eaf1b49299a
- SSDEEP
  
  24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYyq55wpGI9AZOD8iL:Lz071uv4BPMkibTIA5ybH9siL
Score

10^/10

xmrig execution miner upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Command and Scripting Interpreter: PowerShell
  Powershell Invoke Web Request.
  execution
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigexecutionminerupx

behavioral2

xmrigexecutionminerupx

© 2018-2025

Terms | Privacy