xmrig | 0d9a550b00cd6fd4025d80075019d8aebeda4ffce3f7bdba8caa724b57d8e91d | Triage

Submit
Reports

Overview

overview

Static

static

5852cffe68...0N.exe

windows7-x64

5852cffe68...0N.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

5852cffe686fe0d3d7b51cad1a8adc60N.exe
Size

1.8MB
Sample

240902-fqqj4asdmk
MD5

5852cffe686fe0d3d7b51cad1a8adc60
SHA1

c486ff4b084173a1ddbc4992e5e4edbe93dd354f
SHA256

0d9a550b00cd6fd4025d80075019d8aebeda4ffce3f7bdba8caa724b57d8e91d
SHA512

cf7f57bd9c3f5eaffe74c5c8d43ae40ef184caad92ffacf4a56f99ef1bf86a485b5def2facd4ae0a8ddea710bb9d58fe0c09c3a0cacc9163fafd17b8fd0fb218
SSDEEP

24576:JanwhSe11QSONCpGJCjETPlGC78XCejIODosTigQytWpq0IIacMfwcgOWE7+eElK:knw9oUUEEDlGUrMNcbQc22oy+

Score

10^/10

xmrig miner persistence privilege_escalation upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

5852cffe686fe0d3d7b51cad1a8adc60N.exe

Resource

win7-20240729-en

xmrig miner persistence privilege_escalation upx

windows7-x64

8 signatures

120 seconds

Behavioral task

behavioral2

Sample

5852cffe686fe0d3d7b51cad1a8adc60N.exe

Resource

win10v2004-20240802-en

xmrig miner persistence privilege_escalation upx

windows10-2004-x64

11 signatures

120 seconds

Malware Config

Targets

- Target
  
  5852cffe686fe0d3d7b51cad1a8adc60N.exe
- Size
  
  1.8MB
- MD5
  
  5852cffe686fe0d3d7b51cad1a8adc60
- SHA1
  
  c486ff4b084173a1ddbc4992e5e4edbe93dd354f
- SHA256
  
  0d9a550b00cd6fd4025d80075019d8aebeda4ffce3f7bdba8caa724b57d8e91d
- SHA512
  
  cf7f57bd9c3f5eaffe74c5c8d43ae40ef184caad92ffacf4a56f99ef1bf86a485b5def2facd4ae0a8ddea710bb9d58fe0c09c3a0cacc9163fafd17b8fd0fb218
- SSDEEP
  
  24576:JanwhSe11QSONCpGJCjETPlGC78XCejIODosTigQytWpq0IIacMfwcgOWE7+eElK:knw9oUUEEDlGUrMNcbQc22oy+
Score

10^/10

xmrig miner persistence privilege_escalation upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalationupx

behavioral2

xmrigminerpersistenceprivilege_escalationupx

© 2018-2025

Terms | Privacy