xmrig | c865c86d6056d572300cb8e8aebc01872a1de69876f4649eb81972a2f3673256 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bade6387d1c16301ab8c039fa45d99a0N.exe
Size

6.9MB
Sample

240829-fjakaswfnl
MD5

bade6387d1c16301ab8c039fa45d99a0
SHA1

2aca33729145e5723a3306fadc4d5b50c55cf0fc
SHA256

c865c86d6056d572300cb8e8aebc01872a1de69876f4649eb81972a2f3673256
SHA512

dcae797a7dce420dfdc37039ff4f898e9a7620fd8fc38b4ba44ea2f143989a41c355b20c2938b5173ed3e489855f914150276eb78a9eb083c0ba9ccc343eed08
SSDEEP

98304:L3ZVZLzmZITNeMNEav5LMq7sRuaHjEqxsAQm:LpLaZGNebaSiCuaHjWU

Score

10^/10

xmrig miner

Malware Config

Targets

- Target
  
  bade6387d1c16301ab8c039fa45d99a0N.exe
- Size
  
  6.9MB
- MD5
  
  bade6387d1c16301ab8c039fa45d99a0
- SHA1
  
  2aca33729145e5723a3306fadc4d5b50c55cf0fc
- SHA256
  
  c865c86d6056d572300cb8e8aebc01872a1de69876f4649eb81972a2f3673256
- SHA512
  
  dcae797a7dce420dfdc37039ff4f898e9a7620fd8fc38b4ba44ea2f143989a41c355b20c2938b5173ed3e489855f914150276eb78a9eb083c0ba9ccc343eed08
- SSDEEP
  
  98304:L3ZVZLzmZITNeMNEav5LMq7sRuaHjEqxsAQm:LpLaZGNebaSiCuaHjWU
Score

10^/10

xmrig miner
- XMRig Miner payload
  miner
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2