xmrig | baa432539ed17f7fc43230ba452564ccf55fa18773eaab2f5043fda55d9ea5bd | Triage

Submit
Reports

Overview

overview

Static

static

baa432539e...bd.exe

windows7-x64

baa432539e...bd.exe

windows10-2004-x64

Sharing

General

Target

baa432539ed17f7fc43230ba452564ccf55fa18773eaab2f5043fda55d9ea5bd
Size

1.5MB
Sample

241118-ezmdcstkfp
MD5

f12baa1cc6dc0f1c77f470ada1c4763f
SHA1

03be3ef87696f8cef72dce8100e06950411d0b3f
SHA256

baa432539ed17f7fc43230ba452564ccf55fa18773eaab2f5043fda55d9ea5bd
SHA512

caf547bc6d9d3b2787f78e7f25db2073b12b27c17302783b2a6ddcc3e183cf1c8fd11054a4dfc2600dcbd270622f5c1be03f289f76c04019954b4fc19bc781be
SSDEEP

24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszbWKDNEm/5QbPrQtOQzt:GezaTF8FcNkNdfE0pZ9ozttwIRx2T9cV

Score

10^/10

xmrig miner persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

baa432539ed17f7fc43230ba452564ccf55fa18773eaab2f5043fda55d9ea5bd.exe

Resource

win7-20241010-en

xmrig miner persistence privilege_escalation

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

baa432539ed17f7fc43230ba452564ccf55fa18773eaab2f5043fda55d9ea5bd.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  baa432539ed17f7fc43230ba452564ccf55fa18773eaab2f5043fda55d9ea5bd
- Size
  
  1.5MB
- MD5
  
  f12baa1cc6dc0f1c77f470ada1c4763f
- SHA1
  
  03be3ef87696f8cef72dce8100e06950411d0b3f
- SHA256
  
  baa432539ed17f7fc43230ba452564ccf55fa18773eaab2f5043fda55d9ea5bd
- SHA512
  
  caf547bc6d9d3b2787f78e7f25db2073b12b27c17302783b2a6ddcc3e183cf1c8fd11054a4dfc2600dcbd270622f5c1be03f289f76c04019954b4fc19bc781be
- SSDEEP
  
  24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszbWKDNEm/5QbPrQtOQzt:GezaTF8FcNkNdfE0pZ9ozttwIRx2T9cV
Score

10^/10

xmrig miner persistence privilege_escalation
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalation

behavioral2

© 2018-2024

Terms | Privacy