xmrig | 492537f50122934036277e34cddf8a1464ff12ee79dccec41bf893c0fdd54560 | Triage

Submit
Reports

Overview

overview

Static

static

492537f501...60.exe

windows7-x64

492537f501...60.exe

windows10-2004-x64

Sharing

General

Target

492537f50122934036277e34cddf8a1464ff12ee79dccec41bf893c0fdd54560
Size

1.5MB
Sample

241111-1zjs5a1ldk
MD5

51a1a936af2c6ce1f5bf58620d2a59ac
SHA1

90652e068bd3dd9cafc1ae0db2a4a1c40ec041b5
SHA256

492537f50122934036277e34cddf8a1464ff12ee79dccec41bf893c0fdd54560
SHA512

584c6ddca751280d10837a2def1d3ddc40863da87edfb5538043d8d7b4ee49e2a2a0c5012b4ca200dac16641ffc0e37d3876ddfc603961ffbe7333fe4a6dba26
SSDEEP

49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOYFu4/qPX1:GemTLkNdfE0pZyN

Score

10^/10

xmrig miner

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

492537f50122934036277e34cddf8a1464ff12ee79dccec41bf893c0fdd54560.exe

Resource

win7-20240903-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

492537f50122934036277e34cddf8a1464ff12ee79dccec41bf893c0fdd54560.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  492537f50122934036277e34cddf8a1464ff12ee79dccec41bf893c0fdd54560
- Size
  
  1.5MB
- MD5
  
  51a1a936af2c6ce1f5bf58620d2a59ac
- SHA1
  
  90652e068bd3dd9cafc1ae0db2a4a1c40ec041b5
- SHA256
  
  492537f50122934036277e34cddf8a1464ff12ee79dccec41bf893c0fdd54560
- SHA512
  
  584c6ddca751280d10837a2def1d3ddc40863da87edfb5538043d8d7b4ee49e2a2a0c5012b4ca200dac16641ffc0e37d3876ddfc603961ffbe7333fe4a6dba26
- SSDEEP
  
  49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOYFu4/qPX1:GemTLkNdfE0pZyN
Score

10^/10

xmrig miner
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy