xmrig | ab41e347fec54af86ef8edd98c695a7e856a93a30cd07a89d7669896b419b92b | Triage

Submit
Reports

Overview

overview

Static

static

3

ab41e347fe...2b.exe

windows7-x64

ab41e347fe...2b.exe

windows10-2004-x64

Sharing

General

Target

ab41e347fec54af86ef8edd98c695a7e856a93a30cd07a89d7669896b419b92b
Size

2.1MB
Sample

241120-qbw4faxajd
MD5

ef9e6a4bab77a1e5ed51669eabeba31d
SHA1

43b67b32d2fd462f0cb9277ed974d63a5575fc8c
SHA256

ab41e347fec54af86ef8edd98c695a7e856a93a30cd07a89d7669896b419b92b
SHA512

8d3605e486f0ccb01d3022d54c57e8c65622272f5b477035469e45d3289973407f0584142b261a3faca797e03412d182c376c2a2ba6970181e059982223afe99
SSDEEP

24576:XRVlL9DqdKIEs0D7Vx1YPgZqkwBKmXXJj52antf0RsLrGaaFssusSWcaurrYL0Yv:h/GJ66PgUKUZkgtzGGsrzcdorJKJS

Score

10^/10

xmrig miner

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ab41e347fec54af86ef8edd98c695a7e856a93a30cd07a89d7669896b419b92b.exe

Resource

win7-20240903-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab41e347fec54af86ef8edd98c695a7e856a93a30cd07a89d7669896b419b92b.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  ab41e347fec54af86ef8edd98c695a7e856a93a30cd07a89d7669896b419b92b
- Size
  
  2.1MB
- MD5
  
  ef9e6a4bab77a1e5ed51669eabeba31d
- SHA1
  
  43b67b32d2fd462f0cb9277ed974d63a5575fc8c
- SHA256
  
  ab41e347fec54af86ef8edd98c695a7e856a93a30cd07a89d7669896b419b92b
- SHA512
  
  8d3605e486f0ccb01d3022d54c57e8c65622272f5b477035469e45d3289973407f0584142b261a3faca797e03412d182c376c2a2ba6970181e059982223afe99
- SSDEEP
  
  24576:XRVlL9DqdKIEs0D7Vx1YPgZqkwBKmXXJj52antf0RsLrGaaFssusSWcaurrYL0Yv:h/GJ66PgUKUZkgtzGGsrzcdorJKJS
Score

10^/10

xmrig miner
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy