Overview

overview

10

Static

static

10

69e1bbe509...0N.exe

windows7-x64

10

69e1bbe509...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    69e1bbe509f0a5893563cca1c2b5b3f0N.exe

  • Size

    1.6MB

  • Sample

    240911-ejjyas1fkp

  • MD5

    69e1bbe509f0a5893563cca1c2b5b3f0

  • SHA1

    eb4cea0f503b9d942e9f3d3c0d8cd7c8f444afa0

  • SHA256

    3cf2f5f0afeb0430ee15d5b16a42690cd673118b3f99b6e3175eeb0ec96ed705

  • SHA512

    48acb8bfbf8a2ce718d9bdf66f4929bf309b1dd6b8fb9cb0d859ee85f934363a8e33aa5382aa768e4514c531bf3fbba73d484765f242054b0a3ac81c44cc4177

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlGC78XIO6zRIhRmuSOgOdI7E5grqC:knw9oUUEEDlGUh+hNRY7

Score
10/10
xmrigminerpersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      69e1bbe509f0a5893563cca1c2b5b3f0N.exe

    • Size

      1.6MB

    • MD5

      69e1bbe509f0a5893563cca1c2b5b3f0

    • SHA1

      eb4cea0f503b9d942e9f3d3c0d8cd7c8f444afa0

    • SHA256

      3cf2f5f0afeb0430ee15d5b16a42690cd673118b3f99b6e3175eeb0ec96ed705

    • SHA512

      48acb8bfbf8a2ce718d9bdf66f4929bf309b1dd6b8fb9cb0d859ee85f934363a8e33aa5382aa768e4514c531bf3fbba73d484765f242054b0a3ac81c44cc4177

    • SSDEEP

      24576:JanwhSe11QSONCpGJCjETPlGC78XIO6zRIhRmuSOgOdI7E5grqC:knw9oUUEEDlGUh+hNRY7

    Score
    10/10
    xmrigminerupxpersistenceprivilege_escalation

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks