xmrig | 25775db770ea199843210bb4357b2c6e45bfeed99ae9434c4aa36f4f0005845d | Triage

Submit
Reports

Overview

overview

Static

static

25775db770...5d.exe

windows7-x64

25775db770...5d.exe

windows10-2004-x64

Sharing

General

Target

25775db770ea199843210bb4357b2c6e45bfeed99ae9434c4aa36f4f0005845d
Size

1000KB
Sample

241119-y6kmws1qet
MD5

391e949397581941b35acef960c7ce53
SHA1

20c6b1992c6cdf87ab7ca1ea9e52685c75bb5d67
SHA256

25775db770ea199843210bb4357b2c6e45bfeed99ae9434c4aa36f4f0005845d
SHA512

ae588871fad771471dba7321f6f87a8369eaefa9a83ee19cae3d8aac05f54e54a56b2477168aea27119869c5829eea66db9ee83254c3581e6a4462174b454306
SSDEEP

24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszTp3doNjJKv:GezaTF8FcNkNdfE0pZ9ozttwIRTV

Score

10^/10

xmrig miner persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

25775db770ea199843210bb4357b2c6e45bfeed99ae9434c4aa36f4f0005845d.exe

Resource

win7-20241023-en

xmrig miner persistence privilege_escalation

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

25775db770ea199843210bb4357b2c6e45bfeed99ae9434c4aa36f4f0005845d.exe

Resource

win10v2004-20241007-en

xmrig miner persistence privilege_escalation

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  25775db770ea199843210bb4357b2c6e45bfeed99ae9434c4aa36f4f0005845d
- Size
  
  1000KB
- MD5
  
  391e949397581941b35acef960c7ce53
- SHA1
  
  20c6b1992c6cdf87ab7ca1ea9e52685c75bb5d67
- SHA256
  
  25775db770ea199843210bb4357b2c6e45bfeed99ae9434c4aa36f4f0005845d
- SHA512
  
  ae588871fad771471dba7321f6f87a8369eaefa9a83ee19cae3d8aac05f54e54a56b2477168aea27119869c5829eea66db9ee83254c3581e6a4462174b454306
- SSDEEP
  
  24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszTp3doNjJKv:GezaTF8FcNkNdfE0pZ9ozttwIRTV
Score

10^/10

xmrig miner persistence privilege_escalation
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalation

behavioral2

xmrigminerpersistenceprivilege_escalation

© 2018-2024

Terms | Privacy