xmrig | d29068341ecd4a4676b0f5f867474bfdde7bc73d13aa0e45900edf9571d3fb37 | Triage

Sharing

General

Target

d29068341ecd4a4676b0f5f867474bfdde7bc73d13aa0e45900edf9571d3fb37.tar
Size

10.7MB
Sample

241104-de7m5asand
MD5

46850777070a25ac6f4f5deac311b2c1
SHA1

4e3091b386dc60c8249a6aa00b43bb88875e126e
SHA256

d29068341ecd4a4676b0f5f867474bfdde7bc73d13aa0e45900edf9571d3fb37
SHA512

29358cd3d1648aadd54523556dc5e3ae6fb58a9599c5aca161b8f78cdfad279b55bdfb2fef57e520add48acf4611b5744002ea6a8dd207232748467b1c47ef85
SSDEEP

98304:sgbD211H7WHt+HQNymofADvDvD09UG6nXxTu3xxmVPxS5Af/nHi8Z7KJiWPE3PEy:yVZ6sbVIHCRjQvr1s9+ePW3rVx

Score

10^/10

xmrig xmrig_linux antivm discovery linux miner upx

Malware Config

Targets

- Target
  
  .__cli__
- Size
  
  1.6MB
- MD5
  
  d2fa42e2d9a121e9f295a3850d199338
- SHA1
  
  7272c3d3715c112ad81016b2974fa9792d665a6d
- SHA256
  
  a61e5ae0ebbd9b5ae0ba51e324a2447e2806a8fae6398ba1e68a7eccd9809b8c
- SHA512
  
  fb80bbf8d015221ef2d86bab50b6829d13666e2b182d850d931283502b9e4b9fc265207a524b0e7f89701bb1f23e0e564f56a8db41c081f6846fa68b86d647fd
- SSDEEP
  
  24576:+/oqs0pR74KpojOPFIQf8VA4JAL5+yrtzDof6zarJp//N2wH0TFgXRX1OcXNwwU4:+vsitIJALYyNofvrH//NT0BA1xLU4
Score

3^/10

discovery
behavioral1
- Target
  
  .__min__
- Size
  
  8.2MB
- MD5
  
  e63c67b5e3d7ed50f545f169bbabb85d
- SHA1
  
  dc257558381a518aec15ee646364eda18da3ad32
- SHA256
  
  71cf150028e4b67bcd8cb50c4aa86eecab1615195cf6a45024e9c4e55aa1e7fd
- SHA512
  
  a8c7a967a391f7799952ee3ea530cf5e62835860956586f1ee976b6089aead991aa1379a70e7190806e0999d53774432243ecb58b7a2878090f836068ba9a76e
- SSDEEP
  
  98304:MgbD211H7WHt+HQNymofADvDvD09UG6nXxTu3xxmVPxS5Af/nHi8Z7KJiWPE3PEf:SVZ6sbVIHCRjQvr1s
Score

10^/10

xmrig_linux antivm discovery miner
- Xmrig_linux family
  xmrig_linux
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig_linux
- Checks hardware identifiers (DMI)
  Checks DMI information which indicate if the system is a virtual machine.
  antivm
- Reads hardware information
  Accesses system info like serial numbers, manufacturer names etc.
  discovery
behavioral2
- Target
  
  .__min__m
- Size
  
  849KB
- MD5
  
  5df62a68cab91f2fdf4f80667af4d9c3
- SHA1
  
  82661c098f9f8b5f4233432a966186438b6411c8
- SHA256
  
  bad9bff0b3e11481a8874e368f3c0930937237b33bf9b8815a504b2efa858e82
- SHA512
  
  9236e293139f1a2353309d7c177e41040559d17fdb8743b1e8b209101dee3ccbcdcf66f72ea2885d234bdf7a4c1f9a280fee3340451f8b0787d0e3efd6553267
- SSDEEP
  
  24576:NFZihv4QvjrgJm1syI0kkk0FkkLkkkPFKL:NHi51vjEJm4F
Score

1^/10
behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Virtualization/Sandbox Evasion

System Checks

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

xmrig_linuxantivmdiscoveryminer

behavioral3