Overview

overview

10

Static

static

3

UIgt876tUH...67.exe

windows11-21h2-x64

10

UIgt876tUH...12.exe

windows11-21h2-x64

10

UIgt876tUH...44.exe

windows11-21h2-x64

10

UIgt876tUH...85.exe

windows11-21h2-x64

10

UIgt876tUH...05.exe

windows11-21h2-x64

10

UIgt876tUH...18.exe

windows11-21h2-x64

10

UIgt876tUH...55.exe

windows11-21h2-x64

10

UIgt876tUH...02.exe

windows11-21h2-x64

10

UIgt876tUH...35.exe

windows11-21h2-x64

10

UIgt876tUH...36.exe

windows11-21h2-x64

10

UIgt876tUH...14.exe

windows11-21h2-x64

10

UIgt876tUH...25.exe

windows11-21h2-x64

10

UIgt876tUH...78.exe

windows11-21h2-x64

10

UIgt876tUH...17.exe

windows11-21h2-x64

10

UIgt876tUH...24.exe

windows11-21h2-x64

10

UIgt876tUH...75.exe

windows11-21h2-x64

10

UIgt876tUH...26.exe

windows11-21h2-x64

10

UIgt876tUH...78.exe

windows11-21h2-x64

10

UIgt876tUH...21.exe

windows11-21h2-x64

10

UIgt876tUH...11.exe

windows11-21h2-x64

10

UIgt876tUH...41.exe

windows11-21h2-x64

10

UIgt876tUH...83.exe

windows11-21h2-x64

10

UIgt876tUH...28.exe

windows11-21h2-x64

10

UIgt876tUH...18.exe

windows11-21h2-x64

10

UIgt876tUH...40.exe

windows11-21h2-x64

10

UIgt876tUH...21.exe

windows11-21h2-x64

10

UIgt876tUH...35.exe

windows11-21h2-x64

10

UIgt876tUH...00.exe

windows11-21h2-x64

10

UIgt876tUH...22.exe

windows11-21h2-x64

10

UIgt876tUH...35.exe

windows11-21h2-x64

10

UIgt876tUH...94.exe

windows11-21h2-x64

10

UIgt876tUH...83.exe

windows11-21h2-x64

10

Resubmissions

25-11-2024 17:16

241125-vtdf9stnhk 10

25-11-2024 17:16

241125-vtbbxaxmcz 10

24-11-2024 19:50

241124-yj992aslbl 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976.7z

  • Size

    11.9MB

  • Sample

    241124-yj992aslbl

  • MD5

    31ea054d4ee61693a35c36cfd98d8fe6

  • SHA1

    31837fdd47e92bb49e19a55be0d25d8f3e1c143a

  • SHA256

    346cc7566192198b4cccfbcf75a083fbc8702ed576ca9e38c734dd4ca5a0a670

  • SHA512

    fa9a3f1e9cd621076640bc6d04c0dbb231e60490280138135b45563ffd5c59f6e41af90ba85ee6e3a2362a9ef2a169fb6779f88aa9210a87edd5a32297851a1c

  • SSDEEP

    196608:IT+gMgLD9Xq6DXGji2RECgvPAfzrt/WnywfR+dYu0SnvnlZQFFK7eX7+vGL+Tg/M:IT+mdSi2iCgX0rsRfhan8FIO+m/M

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/56hV33j0Zk26xBRQUKQoibTWMzQ1DO_088267.exe

    • Size

      4.9MB

    • MD5

      b55e6b477ca8940e725bbe11472c8de9

    • SHA1

      e2907125b20872929513955928965d7dfdd677c0

    • SHA256

      34a1af6f382d625751970df7b954184de8d15cc96218a99cd2fbbd31534c39b0

    • SHA512

      da80e4c2741592059b7aa572d8c726acc2bb3325ca85413e7bc093759ca9d21cbd5c830e03fe9e49e73d6affee84da38c22c6a47452c7cb8d259fd66e359c0a9

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTk:B/n03MdR8DB0OU0Fp2CYubag

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/AC5zel3AV7vA8b64BXxHmBpuqvCVrl_793412.exe

    • Size

      4.9MB

    • MD5

      008718d3e69e8ec40bd7c25d97d636f9

    • SHA1

      b2e14b84377736202d8809de629360087366bd20

    • SHA256

      f5241821094ae8760aa38f92df037d7b6a53466176fa11fa48bd30d3000062f3

    • SHA512

      41d0665d2df701dd96a2e391ffc5ac41bf9980f64511cc833d504c7c6083125be3bdd9c3015dcf2c88e130b0f6a56e03a9771ba11214b55cf5680fc65304cb73

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTm:B/n03MdR8DB0OU0Fp2CYubaa

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral2

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/FZC18z1mmOSrfGmgRohsEa8b87QKyK_004944.exe

    • Size

      4.9MB

    • MD5

      e36d651a682205b70784a02f72d26be1

    • SHA1

      cbc66d3fb32d8aadeac543074f9b97987155f296

    • SHA256

      74af629cb9f850b1ca7e9734944837222ed9a336f83e6f900fef4670ec14b211

    • SHA512

      72e73c90bf0b897ef62fb9b25248b378dc22b933e09661ded6010b429251fde21643b64dfa835d2c8940062f948d1a8caabe01f47dee4b5c62ee57eeaf91d8ea

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTd:B/n03MdR8DB0OU0Fp2CYubah

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/H9zMDiucu4hoAtgomWFd5CAHBZ89AR_233385.exe

    • Size

      4.9MB

    • MD5

      1259819df568a40db499141a1a65e58b

    • SHA1

      709a8cd3dccd19a33fa1b2bb5018ac33f2803b5f

    • SHA256

      fe813fb011879fd6c2a9d991f1b6152bd7e64e98cd79f59bfef308ffdd47a4c1

    • SHA512

      6201733189696fe81530a952c4191f4dbc977dca03578d3123853ce6e25b29dcc7650bac51f092a92d1e61aff644766cdc46abecf1ba8f8abb681d1c6919056e

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTa:B/n03MdR8DB0OU0Fp2CYubaW

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral4

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/IbxyHSgPkKXhHO3XECSuXtrGrP78dY_051705.exe

    • Size

      4.9MB

    • MD5

      f9acb4b706cea6cdb55a6491db94c63f

    • SHA1

      a0e1e00325be8824f7530fd568f5a00ee9b88735

    • SHA256

      710405ba0786898a25dd4a13ac85781fddb994bc1db8899282147a62a0c505cf

    • SHA512

      ff75aafcc95cf8b2d2ae203416223f15e811f0276cf240f43074911218e1b6b9379cd085281cffaa5f49cbade7ad31823861e12146f2a4ed1cef940fdd164b68

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTS:B/n03MdR8DB0OU0Fp2CYuba2

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral5

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/JWPdwAR7tf5F2I2M0XlaUFZpXkDHYS_248818.exe

    • Size

      4.9MB

    • MD5

      50136b9244c1b684653cc5daa5a891f7

    • SHA1

      9fb4c4297411e915a52c5563325c01ef8a04fcb8

    • SHA256

      9aee367c5f4502676c1a93e79519b6cd7df844749c640683e30e5141165d5f64

    • SHA512

      0cb173d1712d480c68d55044418acbd6c325a2c7152aef59fdcf27201686a563145f8b2c4eedebfb402c9e884306535d6ec585d44f6d2f990e6d460d0266844a

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT7:B/n03MdR8DB0OU0Fp2CYuba/

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral6

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/LufhxvbVaYw1RXsbz89wC140KwFWBG_439155.exe

    • Size

      4.9MB

    • MD5

      e91d4caf2fdb4882f2765fca3df7d3ab

    • SHA1

      3ff37b771bd4a7b7958456a5d7a92513a5e5c484

    • SHA256

      7d821b4d7f35ceb933fcda3347e4dbeff62de35381f29e2781e74034d0a7a6e8

    • SHA512

      fb717c3defebff2bf653a2401d874a9a5fd399e5ab6f5edb188b791ced0e1c658f732945a4f8e8c5f20ac8bfb9fd6c8c29d892917c124bc74e4db6e342ab1020

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTP:B/n03MdR8DB0OU0Fp2CYubab

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral7

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/SKR8Xe9D0cXCZDZPbZkg8tz0KL8VIp_015702.exe

    • Size

      4.9MB

    • MD5

      f4de8f3f221306b1b51ef9b16172d2ba

    • SHA1

      eba7fc05b97053dd118e93d7391d2960e74e799d

    • SHA256

      7dbca6206d8f8d54fef05bf4f7888233c700511dde7ed9fdbb5e0200d7dca166

    • SHA512

      c7c69a2d1159b54418aa9fe36e38db2a2cace75edcd03370a91615aaa823c0aa1bbafa60e8a6fcc2e49ef59e8dd800a29b70d0bcc9de1b6eb9da06d5af3a0097

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTe:B/n03MdR8DB0OU0Fp2CYubaC

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral8

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/SMFjVyESw8I9PTvLFZFVsEVapqgviY_867235.exe

    • Size

      4.9MB

    • MD5

      73f5e5cd5744657aa5db77a272d3186a

    • SHA1

      5d9360317392817b9de50dc3cba9ce09e7d311f1

    • SHA256

      3f2e6631c2a6f54ce4fa6ee1b5803f1c0f01b8ef546d4f7d59ff80b705ae5273

    • SHA512

      b51b9104913fec64f7853333630457a707d645dc99cbfe5fa1596216fc70244976f334445b9755a422a9d1e9a2c553bd67cb38697c5d57a7cd7506f7932e4051

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTU:B/n03MdR8DB0OU0Fp2CYubaI

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral9

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/T78QQDbK2Slo8gJ2UXctsrxPxHgjGt_467036.exe

    • Size

      4.9MB

    • MD5

      0fe4a8689d7bb10c8681520f3c3b3d8f

    • SHA1

      629e20770f94b5f74500d508a1d40cd950f87c5f

    • SHA256

      50e5dbec65d6d91e14b07d608f161a736c3a87398ea424feea5b1bcc09ace611

    • SHA512

      08c0098d1ee61ac775055a97320116c65852ef95538233d4b84f224d98e1d80b03785e146ad15eed74607c2fb49c9eb27421b931dac280ee357fcf9d9abd34d7

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTB:B/n03MdR8DB0OU0Fp2CYubal

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral10

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/VD0HrhXsggfxjVhZKwKvFcUgZngYpL_725314.exe

    • Size

      4.9MB

    • MD5

      23dbb28f445f69198c432cf61b3f31c0

    • SHA1

      fb09012ed9042eccae23e177fca317122c015506

    • SHA256

      1ee2248f6d0d167a1d727c4c9fc35fcc0e9a22fd94039a9ce4a90ecced4cb2ce

    • SHA512

      c54e1e84474805cf2090725d2fbdf2288892d66264ecae4646d8a22be1b9f618c0abaad46b8379a688f6732e619824771c718b4549448fe69f0946235d9aac95

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT1:B/n03MdR8DB0OU0Fp2CYuba5

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral11

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/VMaiSLAgN8PSkdeOBll7ujSMJqtL0B_784725.exe

    • Size

      4.9MB

    • MD5

      676bfee5d39519879782e86d480f4592

    • SHA1

      5d90a957c385255fb01e7c001fccd3580434b81f

    • SHA256

      62a720c705c2d101eb16f015f9abccebc8f88d8c4c8ef2e3eac4a313565df90c

    • SHA512

      d2046af2e484b4acc3833a900c7c2691cdd65cfd853e1f14e4e1b18a3a833a40da3e351224dd53f4220cfcc9a89e09d85f8ab8c4c62579f3966ce7e9c3ca56ea

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTl:B/n03MdR8DB0OU0Fp2CYubaR

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral12

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/YHgiq8V6Fe1kWFfxgebX0tkrZhzCzu_920778.exe

    • Size

      4.9MB

    • MD5

      c32448420a605247365e1bdfc61b6208

    • SHA1

      69cc71f17c161f1cae00fd67985872f0e3241658

    • SHA256

      068f6943a9146fdfd82f460694c842bbf61a42d04be7942e74ac595aaedef67c

    • SHA512

      f0f9ac08512be744bb1b1557796cd5a8193f2b84bfe5032e2a609d899bfbbf704a44133f40e16ce35c1c84a5b27e4b3044dfe40030d489d54e0fce1b44a04c39

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTX:B/n03MdR8DB0OU0Fp2CYubab

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral13

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/bcnYlT4H88bX2xmChdmk3MT3A9959W_902017.exe

    • Size

      4.9MB

    • MD5

      5b074df339cb192286169805c8432c77

    • SHA1

      9ecfe398cebec265c70f7d32ba1ec66c60ac1185

    • SHA256

      647675cfe31d35d77be0d34542c489db46f7d9f75fb1e30908e93975ed3ec43c

    • SHA512

      09518e716d279177bed8ddea951ac2d2f0e24a928a35f07cb0fcf9cb5956c7d9ab343494c0815b8004c102a1069a60abc679cd693dfb60457ef84e0d6e97aa33

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTH:B/n03MdR8DB0OU0Fp2CYubaL

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral14

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/cz7gZTgrlXdeXdX0GeVttHKwMvPoBu_100224.exe

    • Size

      4.9MB

    • MD5

      219dd1a404086b1fd00ffc6b738e4df8

    • SHA1

      64f813a99b7df9255ac5329937b8d287cca7950b

    • SHA256

      4da1e2e9bace60c9f1aa6bee0a83609d52e3237e5a8ce8cc7c2bd4db27a51889

    • SHA512

      2088fd935a8ca80b240189af1e41ae366eaeb9ba11e232d7d609f91679e861502fbc7d6b899ca9bfc3bf27e13774ee7f96742f4a440c3bb4362a49ee1323fb1e

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTc:B/n03MdR8DB0OU0Fp2CYuba4

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral15

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/d4DRbF4lHfHnECxCaAJjnsHMjvRUuT_697575.exe

    • Size

      4.9MB

    • MD5

      58f8b56544f595a5e9869f8166743782

    • SHA1

      3690cb389eb963cdeacbe36edf65f24fe32a5689

    • SHA256

      11fc12e95e6919c2d838ba825b5bcf36627e4a4c5bd3acf970045fa0021f37e9

    • SHA512

      d4d2bf860f636f5eda5abec7883ed0c77170eda05a3abbdbe206374b754a6b750528fa2a72c14464c656ccba4d327e426ac4bb9bcd4927aa1c326485748461d8

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT3:B/n03MdR8DB0OU0Fp2CYubaL

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral16

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/dH0vwJrfFCMTza8GNwvojfVVLEOsFO_754126.exe

    • Size

      4.9MB

    • MD5

      edd9ad78cddebd6582efefb5d1b70e13

    • SHA1

      640d6dc73c9c15cbfdc8f89a900173bdd9a70cb8

    • SHA256

      482cc68ed3098ee40d94599111694910579d70aa23ca2161b272ec00d0d08108

    • SHA512

      f633695de59ab939858307baaba0641471d469eabb691ba4910ddbb8d4047fe09b641b8f2ce44f19df649c764a8333b35630d5b7dd8dc2cb2148b8c9357cf0a1

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTi:B/n03MdR8DB0OU0Fp2CYuba+

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral17

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/g9sj08YZGrYURlSuoHSBfD2nMsxYwq_451878.exe

    • Size

      4.9MB

    • MD5

      9ab947d8db64df64e303a1717dbded22

    • SHA1

      2beab05b87fc87e20601e124aef1f59b9673823e

    • SHA256

      87d2d9cca230b17f13d39052c55cd28869d6614e1258939299a10ab2c05af95e

    • SHA512

      f7e2b29723dc3bdff26a6c95d6a6b8fc91819bb1e5a40420e645d4da3f90277d41f26514f6dab384582310800bf39df99339d88d9c06bf2259a8d4806d66d5ef

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTJ:B/n03MdR8DB0OU0Fp2CYubad

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral18

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/gEGj0hrvo86NOP4C6uFjuQZGc7L9SD_033621.exe

    • Size

      4.9MB

    • MD5

      acdf68831095a37a43d2722d04a839e2

    • SHA1

      a870f1e9ba11993fc78ec0f37df4ce69f2cc7803

    • SHA256

      72ab4f675af59783b240a59afa236946a386608e69022bcfadb162157aa98120

    • SHA512

      9437dad0b731a9b7f76b39c9460d191bf0b913d18f614930887efcb9c467dc0d4660d387a4aa6253b83686d7d0636596de78013cb810128dfc0c44cc074c4c09

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTR:B/n03MdR8DB0OU0Fp2CYubaN

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral19

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/i1PZKF5Ty5Z4JG8hL2JcygPplPihXS_988211.exe

    • Size

      4.9MB

    • MD5

      f6dbe07f02784cfde9004b81e2b892a4

    • SHA1

      9a761683c0c1f5a66127916d02ec683421de24fb

    • SHA256

      b8a7502163c72009827087cf03a051d1a8812c52a272b589808c9c13bd555317

    • SHA512

      13f4daa3d551f4ae694892e51ff472981262065585f97dfd7ca5d68e018aa9f4d02017d75d9db71a240695e7867a3b0c107457f16923f27c83c32ee87a057048

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTV:B/n03MdR8DB0OU0Fp2CYubaJ

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral20

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/kFlc4oNw6aamroILD0qpdj04MfSRdC_472441.exe

    • Size

      4.9MB

    • MD5

      76b3109cff73b7b11df9eab8a515ddd3

    • SHA1

      f2e8f9ecb3162bb286704ad07ea001d220407912

    • SHA256

      45d6a7d08655744cb2145d5300226c2c7a97d4654a26f77d87b132bf781fc399

    • SHA512

      a08e5151de692c42b2db12a7221e4c831f1e12348e96b34d070a6b04fbf6ee0edefbc000d056d258f252194ae6105353ceba06f34769e4dbb26ee8cf24568e65

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTP:B/n03MdR8DB0OU0Fp2CYubaj

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral21

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/ksggHuRICgGdy4hFQ7TQRtRAFrmo9g_005883.exe

    • Size

      4.9MB

    • MD5

      9e1c89e37917e3223748adf5d94e98f0

    • SHA1

      6786cfae6453c210a002d286fc53ff4b9efb3d3b

    • SHA256

      220eb334c3daaf66c5cdf9d4df65120e65b6c8e09955e4a29dffb7c43b26f029

    • SHA512

      81876654c2ff337236b24ca910eb31d7a7d5eafc5efdcd68a60124698ca3df9f81de8b6000e2c97ff174689f84fdc399a3415ad67a42c34687ad9e81a0815a32

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT3:B/n03MdR8DB0OU0Fp2CYubaT

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral22

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/lpxGanhj9mp46k1kUv9pBlExkpxjRo_341428.exe

    • Size

      4.9MB

    • MD5

      f197e16d36330fb4d1510d9ff421a2c2

    • SHA1

      cbdd08ee0513c7385ac587be210ad4cd381535ee

    • SHA256

      14eaf45272c0f8d22032113dfd7fc5e8bab2a071d0916a8025a51201e4e0b23e

    • SHA512

      a5d6e0b7829238193d2937417e51aaaa51359b05cdaeb82da74c05a2750163ceb9bcc4c61d81ca099392e8a780ff31d0a390646d780747117727004f6d9ab411

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT3:B/n03MdR8DB0OU0Fp2CYubaD

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral23

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/mF2M6MDHwuDSA5ImXG8llsrjkmC05f_743618.exe

    • Size

      4.9MB

    • MD5

      3b6e2145c3b6b72ff77703f947ee576a

    • SHA1

      1b4853e6607178620597197ab10178081951e8bf

    • SHA256

      5b5d337e024fd9d0df05a3f4a5884dfe08a181d5a6925a8eb462dc25ce2a173c

    • SHA512

      3b203a00ba5894a86350c21892ae0f30a895fb8c4d621c3dff14fbd92897706e22ded7410620e9d024c283863b9171ea872c9d78927307dd6cd7ac80b2078a3b

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTA:B/n03MdR8DB0OU0Fp2CYubas

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral24

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/nAUgDpjI6p9TJ1s2ecjTDpXBQyXXtZ_398840.exe

    • Size

      4.9MB

    • MD5

      bc0038292875da383ececcfb49e14988

    • SHA1

      ac8ba7ec33a0e3fe3f2700cb50a2e56564f15489

    • SHA256

      d5f36fe41efb119c6d531baee593557c8ada37ac408f7c33bd343eba886d97f6

    • SHA512

      038ad9007fdb290921337d24b3c68b1cf95018b73d710e62c72bbce95ba5657074916917676370debb544443a6b945534657800509c3ec13bc45ff7888f4a891

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTq:B/n03MdR8DB0OU0Fp2CYubaO

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral25

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/pXNS8K9fh2GbsFzm05FSEV0i7gZH1i_700021.exe

    • Size

      4.9MB

    • MD5

      3f0d1fe09b5afa96f74ff1ea5658b77b

    • SHA1

      c4cd8b6003757f52988e4610864d41b74f54c887

    • SHA256

      94090dd85ec5e90bb4ba0dc8d9801491878a9a0ae349e70d3e2bc4cfb1f2b0c7

    • SHA512

      274fa56737ac8b0e127606f263c4584fae94615a091d7d07944bcdbc5773d8e3e2d40232cf4ccc0e59cfb635f74454e012acef571c1cbfb3a7a4d168f3b2e46f

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTl:B/n03MdR8DB0OU0Fp2CYubax

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral26

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/sjcH0YxZZOOsABx58ITvg1uPWbRbE8_934035.exe

    • Size

      4.9MB

    • MD5

      84761e66db0eb00b5a3ef29d828c0d03

    • SHA1

      79ccb1ce66394ccdec7de9b0a64ca6ff266e9db3

    • SHA256

      1620575fe975a30ed1c7eba4ceeffd85d6a0cf9ecb985bbd47994fff16da826a

    • SHA512

      ad285c17ac664b93d32bfb26ec70c45c14fd5f28b5a6b6118c704962319aef1b697960e10d9b31d05503d60b0d9e8dc5dc825bdea97410b421e8f1bc38d0b278

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTF:B/n03MdR8DB0OU0Fp2CYubaJ

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral27

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/t5bQ9k2jwSWS8mOCFHDsDjImPq05eW_436400.exe

    • Size

      4.9MB

    • MD5

      883c76f676af801bec8714b5981dbf32

    • SHA1

      329c0a8b52011c42e402e6079b6d5aab9cc51949

    • SHA256

      ac290fc2a7dedcf669b60785e020c6cea3369e77123d3114aa7b946e2b07fff8

    • SHA512

      311aa5dd8ebe813c1f4624c87ad1f34f9af0c81115a3402fd0156085185d5b36ac3cdbd44feb16a1a52c05047c110ed2a25daa2ba5acac25ad9fa604fb181a78

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT9:B/n03MdR8DB0OU0Fp2CYubaB

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral28

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/tNL1iZslogiTHVT4WoLJnOIUxfb1y9_736622.exe

    • Size

      4.9MB

    • MD5

      302acb44574dcd10fd537a4190ac6cb3

    • SHA1

      25b091e2dd5fbb1471f63f9230566589b98c8ebf

    • SHA256

      838bc6b16320574c6bd746146ac20d155321a0ce68e21a5240acfd239df3b68d

    • SHA512

      477282897c18021500875a9f5f69fd01284d902024ab543cb28a49a53c85950977817521224c713399661404b37a9aba3ad0e89d6bc06db58d47137e92913ef5

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT0:B/n03MdR8DB0OU0Fp2CYubaw

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral29

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/wNGm7TKEGTauV0JK3s4EJDeiQqLRyr_259035.exe

    • Size

      4.9MB

    • MD5

      ab23bf922f02fddc53583718439e28fa

    • SHA1

      8ba3a7f6a893162999455cad920c441398d3272b

    • SHA256

      2ca933b559cd31b813a3ea434732613f62b768dd2c81eb4707466a123d8ff9e9

    • SHA512

      d482dbddd400ce974c3e760e6ae3e8e14c01e942b444b0c3bd325da1339e6281e0f71669bed59cf8086261e9d905fd5a6f0681b27aaf6a31503f9bc1175a8a3c

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTJ:B/n03MdR8DB0OU0Fp2CYuba9

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral30

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/xriqKcYplsVMajrABwapyatwUlnHT5_216294.exe

    • Size

      4.9MB

    • MD5

      cdb4bba65a3591684741bdfb5816332a

    • SHA1

      14d5f2be1a33dedb63205356b33367c4a0924eec

    • SHA256

      312e253b303b9a0ae907191f14198991fad769f0e7cfa9c13a59d9fadc21d181

    • SHA512

      87140dde70647747cba7cb5ab388612f64dbed680b171703a2325a5e126a8767f2d4b464fb34251aa1572700419973ac12ba07d503a1a24c38681b91e65f2926

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaTr:B/n03MdR8DB0OU0Fp2CYuba/

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral31

    • Target

      UIgt876tUHB876tIUG87tiuG87TijT89h89T879hgiuGH86ijH8976/z2AhOpQccu8nkITnwvx40BDfqKLX1O_456383.exe

    • Size

      4.9MB

    • MD5

      718a17cbe9b027aeeec5da46b939fb96

    • SHA1

      9311714fb6cfcf55ede28bc8abd3ed7f1ae2f1b9

    • SHA256

      8208b805311ca3be243b8975ecd255d353b82c1fa80c58290ad87dd7fa2bb874

    • SHA512

      041caf72a8f7046de518e84c4107a1ada7ea6b4f261a7bf80763ef89380b5c6c6214060d732e22227e317917ec7ff332d28608b848ecc537850aaf81d6730664

    • SSDEEP

      98304:BDc6nwsaESMplY63OEVf8J9p72FOUPtekqzFLym3Qs5gREwbubaT4:B/n03MdR8DB0OU0Fp2CYubaM

    Score
    10/10
    xmrigminerupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral32

MITRE ATT&CK Matrix

Tasks

static1

Score
3/10

behavioral1

xmrigminerupx
Score
10/10

behavioral2

xmrigminerupx
Score
10/10

behavioral3

xmrigminerupx
Score
10/10

behavioral4

xmrigminerupx
Score
10/10

behavioral5

xmrigminerupx
Score
10/10

behavioral6

xmrigminerupx
Score
10/10

behavioral7

xmrigminerupx
Score
10/10

behavioral8

xmrigminerupx
Score
10/10

behavioral9

xmrigminerupx
Score
10/10

behavioral10

xmrigminerupx
Score
10/10

behavioral11

xmrigminerupx
Score
10/10

behavioral12

xmrigminerupx
Score
10/10

behavioral13

xmrigminerupx
Score
10/10

behavioral14

xmrigminerupx
Score
10/10

behavioral15

xmrigminerupx
Score
10/10

behavioral16

xmrigminerupx
Score
10/10

behavioral17

xmrigminerupx
Score
10/10

behavioral18

xmrigminerupx
Score
10/10

behavioral19

xmrigminerupx
Score
10/10

behavioral20

xmrigminerupx
Score
10/10

behavioral21

xmrigminerupx
Score
10/10

behavioral22

xmrigminerupx
Score
10/10

behavioral23

xmrigminerupx
Score
10/10

behavioral24

xmrigminerupx
Score
10/10

behavioral25

xmrigminerupx
Score
10/10

behavioral26

xmrigminerupx
Score
10/10

behavioral27

xmrigminerupx
Score
10/10

behavioral28

xmrigminerupx
Score
10/10

behavioral29

xmrigminerupx
Score
10/10

behavioral30

xmrigminerupx
Score
10/10

behavioral31

xmrigminerupx
Score
10/10

behavioral32

xmrigminerupx
Score
10/10