Overview

overview

10

Static

static

3

Triage-32/...2).exe

windows11-21h2-x64

10

Triage-32/...3).exe

windows11-21h2-x64

10

Triage-32/...4).exe

windows11-21h2-x64

10

Triage-32/...py.exe

windows11-21h2-x64

10

Triage-32/Test.exe

windows11-21h2-x64

Resubmissions

21-11-2024 13:32

241121-qs3ybasmhs 10

21-11-2024 03:45

241121-ebadwssrar 10

20-11-2024 14:36

241120-rynk9ayemj 10

20-11-2024 14:35

241120-rx15ysyjfy 10

20-11-2024 14:35

241120-rxy1laxfqa 10

20-11-2024 14:34

241120-rxwv8sxfpg 10

20-11-2024 14:34

241120-rxvceayjfv 10

20-11-2024 14:34

241120-rxshtayekn 10

20-11-2024 14:34

241120-rxqn8axfpe 10

19-11-2024 11:15

241119-nc1rxazngn 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Triage-32.7z

  • Size

    11.9MB

  • Sample

    241119-m7mm4awblq

  • MD5

    2c15896d1d4368b417a6c96afade7963

  • SHA1

    44f75c5f9243905fa5ffdd4a02745818187c0ba0

  • SHA256

    834dc77bde2ef5838592e137c097553696b7358fe1956465a7417f5681308065

  • SHA512

    97e592e1153bc312dff6febd162153ebcddd6e2216b46840705cd97e2948d7111594945ef57e5f8ca13c56e7678479859d3b45a14fb23841c6a8aa0626128c24

  • SSDEEP

    196608:NqQz4uL2vcUFGaf6sF78iTEEYCblxkTeOIJEPkqUTGrF0J5DMeelasK6:kQzhivdQs+OEewItPGrYJMTasK6

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      Triage-32/Test - Copy (2).exe

    • Size

      4.9MB

    • MD5

      8136f991544b48f3f64764ecb8eb7ecb

    • SHA1

      81151ada9288fde410a14254554c124ba553cba1

    • SHA256

      bfca67785b156c56f5e04edd97f5dfd4b72664facf1a663dbfb6e2662abf032b

    • SHA512

      d6703707503014bc90ed52eccad9f4e96d4eae06895975d6c8d66f77f1d1158043cd15bbfb55e0dabfcda2363d7109c25e7b3aa131a4faf5c784e1945d2530fd

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT:B/n03MdR8DB0OU0Fp2CYuba

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

    • Target

      Triage-32/Test - Copy (3).exe

    • Size

      4.9MB

    • MD5

      8136f991544b48f3f64764ecb8eb7ecb

    • SHA1

      81151ada9288fde410a14254554c124ba553cba1

    • SHA256

      bfca67785b156c56f5e04edd97f5dfd4b72664facf1a663dbfb6e2662abf032b

    • SHA512

      d6703707503014bc90ed52eccad9f4e96d4eae06895975d6c8d66f77f1d1158043cd15bbfb55e0dabfcda2363d7109c25e7b3aa131a4faf5c784e1945d2530fd

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT:B/n03MdR8DB0OU0Fp2CYuba

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral2

    • Target

      Triage-32/Test - Copy (4).exe

    • Size

      4.9MB

    • MD5

      8136f991544b48f3f64764ecb8eb7ecb

    • SHA1

      81151ada9288fde410a14254554c124ba553cba1

    • SHA256

      bfca67785b156c56f5e04edd97f5dfd4b72664facf1a663dbfb6e2662abf032b

    • SHA512

      d6703707503014bc90ed52eccad9f4e96d4eae06895975d6c8d66f77f1d1158043cd15bbfb55e0dabfcda2363d7109c25e7b3aa131a4faf5c784e1945d2530fd

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT:B/n03MdR8DB0OU0Fp2CYuba

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3

    • Target

      Triage-32/Test - Copy.exe

    • Size

      4.9MB

    • MD5

      8136f991544b48f3f64764ecb8eb7ecb

    • SHA1

      81151ada9288fde410a14254554c124ba553cba1

    • SHA256

      bfca67785b156c56f5e04edd97f5dfd4b72664facf1a663dbfb6e2662abf032b

    • SHA512

      d6703707503014bc90ed52eccad9f4e96d4eae06895975d6c8d66f77f1d1158043cd15bbfb55e0dabfcda2363d7109c25e7b3aa131a4faf5c784e1945d2530fd

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT:B/n03MdR8DB0OU0Fp2CYuba

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral4

    • Target

      Triage-32/Test.exe

    • Size

      3.3MB

    • MD5

      376d49dd641ccc19f5ff19e2dbc53348

    • SHA1

      3373395842e020fd05a871f687d29add91ac9511

    • SHA256

      cbb1b30134abb0fe80bd246471aa7f1837f57e983c9ab7b73ab20bfa57b6ce0b

    • SHA512

      d72ce5f17fd083411d6318eec7e4b870020e1cfab3d553f38f0f4aecdd14841d7055b5fe0b937697074e0209c6498164ab1a74542f4fda05401d39e133578f0b

    • SSDEEP

      49152:bgCz9lDhRlBC6ZyEzDUskNRiw0OMX5lgd7UT3OEVyM8uA9pkYm/vU2RwADOUPB5:BDc6nwsaESMplY63OEVf8J9p72FOUPz

    Score
    1/10
    behavioral5

MITRE ATT&CK Matrix

Tasks