General

  • Target

    01063241daaefc664890ba9f5ace509ebb56bef85af3585b09e1f50b1798d98e

  • Size

    1.3MB

  • Sample

    241027-xtkxfsylap

  • MD5

    885e721621caf8e8487782f25e3e3844

  • SHA1

    647950a857c17763b6dece7941a4a80b961e0de5

  • SHA256

    01063241daaefc664890ba9f5ace509ebb56bef85af3585b09e1f50b1798d98e

  • SHA512

    5d62e38e8fbb12dfe8bbef125a575f4eb45507108ce641bd3ad9a353d7660fcc5c9a08f4313ed5a0bc872d6c52b7ac88aa79dd35b3ef4ff51b04306288991110

  • SSDEEP

    24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKensziXoSPqZScXoiRIKH/e:GezaTF8FcNkNdfE0pZ9ozttwIRRXRJ/e

Score
10/10

Malware Config

Targets

    • Target

      01063241daaefc664890ba9f5ace509ebb56bef85af3585b09e1f50b1798d98e

    • Size

      1.3MB

    • MD5

      885e721621caf8e8487782f25e3e3844

    • SHA1

      647950a857c17763b6dece7941a4a80b961e0de5

    • SHA256

      01063241daaefc664890ba9f5ace509ebb56bef85af3585b09e1f50b1798d98e

    • SHA512

      5d62e38e8fbb12dfe8bbef125a575f4eb45507108ce641bd3ad9a353d7660fcc5c9a08f4313ed5a0bc872d6c52b7ac88aa79dd35b3ef4ff51b04306288991110

    • SSDEEP

      24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKensziXoSPqZScXoiRIKH/e:GezaTF8FcNkNdfE0pZ9ozttwIRRXRJ/e

    Score
    10/10
    • Xmrig family

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks