xmrig | 93328c2a53e1815a5a2f7d3445fd9fe0333e082994df6b19616637fe522a3a18 | Triage

Submit
Reports

Overview

overview

Static

static

93328c2a53...8N.exe

windows7-x64

93328c2a53...8N.exe

windows10-2004-x64

Sharing

General

Target

93328c2a53e1815a5a2f7d3445fd9fe0333e082994df6b19616637fe522a3a18N.exe
Size

587KB
Sample

241119-d61znazkhx
MD5

f1d6a898cbdca25930336ba1d76c2e30
SHA1

30055012f434c5eeec8bf97b5e274e98487f52e1
SHA256

93328c2a53e1815a5a2f7d3445fd9fe0333e082994df6b19616637fe522a3a18
SHA512

95c4c51d93de9d38ccbdb3d8bf26cc7e6d384ee7a0361613c9195f7fca566b63bb608a9f90887b818bee1b7ebeddba6bfc5edb72bb9e8d07f43be8f338012a5b
SSDEEP

12288:ISe8XYl3vWD8xCi7KZoqkatMLrJMxy+7SIZ0ThoOdhC0LBftwv:RVIl/WDGCi7/qkat62wTo01vti

Score

10^/10

xmrig miner persistence privilege_escalation upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

93328c2a53e1815a5a2f7d3445fd9fe0333e082994df6b19616637fe522a3a18N.exe

Resource

win7-20240903-en

xmrig miner persistence privilege_escalation upx

windows7-x64

9 signatures

120 seconds

Behavioral task

behavioral2

Sample

93328c2a53e1815a5a2f7d3445fd9fe0333e082994df6b19616637fe522a3a18N.exe

Resource

win10v2004-20241007-en

xmrig miner upx

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  93328c2a53e1815a5a2f7d3445fd9fe0333e082994df6b19616637fe522a3a18N.exe
- Size
  
  587KB
- MD5
  
  f1d6a898cbdca25930336ba1d76c2e30
- SHA1
  
  30055012f434c5eeec8bf97b5e274e98487f52e1
- SHA256
  
  93328c2a53e1815a5a2f7d3445fd9fe0333e082994df6b19616637fe522a3a18
- SHA512
  
  95c4c51d93de9d38ccbdb3d8bf26cc7e6d384ee7a0361613c9195f7fca566b63bb608a9f90887b818bee1b7ebeddba6bfc5edb72bb9e8d07f43be8f338012a5b
- SSDEEP
  
  12288:ISe8XYl3vWD8xCi7KZoqkatMLrJMxy+7SIZ0ThoOdhC0LBftwv:RVIl/WDGCi7/qkat62wTo01vti
Score

10^/10

xmrig miner persistence privilege_escalation upx
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalationupx

behavioral2

© 2018-2024

Terms | Privacy