xmrig | 1b35c5757e1be4049b1bbfc6485d775221210cf016e5e8fed2c0f47ac562d875 | Triage

Submit
Reports

Overview

overview

Static

static

1b35c5757e...75.exe

windows7-x64

1b35c5757e...75.exe

windows10-2004-x64

Sharing

General

Target

1b35c5757e1be4049b1bbfc6485d775221210cf016e5e8fed2c0f47ac562d875
Size

1.4MB
Sample

241118-ydkr7atld1
MD5

28e9b492091085f010171a56d18d78ea
SHA1

a18ee15e91edcc4d9e2ff3c5f17f3b551b5ca2a4
SHA256

1b35c5757e1be4049b1bbfc6485d775221210cf016e5e8fed2c0f47ac562d875
SHA512

e4721882efbcc43bb06e052646721b95c0362917d64b20fe40182238684a6609e7b43758de81944e64488bb48c1c77ff28bad800301ea276577fbd18596f145d
SSDEEP

24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszbWKDNEm/5p84neZKTbS:GezaTF8FcNkNdfE0pZ9ozttwIRxA1Mc9

Score

10^/10

xmrig miner persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

1b35c5757e1be4049b1bbfc6485d775221210cf016e5e8fed2c0f47ac562d875.exe

Resource

win7-20240903-en

xmrig miner persistence privilege_escalation

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

1b35c5757e1be4049b1bbfc6485d775221210cf016e5e8fed2c0f47ac562d875.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  1b35c5757e1be4049b1bbfc6485d775221210cf016e5e8fed2c0f47ac562d875
- Size
  
  1.4MB
- MD5
  
  28e9b492091085f010171a56d18d78ea
- SHA1
  
  a18ee15e91edcc4d9e2ff3c5f17f3b551b5ca2a4
- SHA256
  
  1b35c5757e1be4049b1bbfc6485d775221210cf016e5e8fed2c0f47ac562d875
- SHA512
  
  e4721882efbcc43bb06e052646721b95c0362917d64b20fe40182238684a6609e7b43758de81944e64488bb48c1c77ff28bad800301ea276577fbd18596f145d
- SSDEEP
  
  24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszbWKDNEm/5p84neZKTbS:GezaTF8FcNkNdfE0pZ9ozttwIRxA1Mc9
Score

10^/10

xmrig miner persistence privilege_escalation
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalation

behavioral2

© 2018-2024

Terms | Privacy