xmrig | ed3f819518e48421a14c2a360fb766535f97690c8546e4a5911292e88afa8263 | Triage

Submit
Reports

Overview

overview

Static

static

ed3f819518...63.exe

windows7-x64

ed3f819518...63.exe

windows10-2004-x64

Sharing

General

Target

ed3f819518e48421a14c2a360fb766535f97690c8546e4a5911292e88afa8263
Size

1.5MB
Sample

241130-fz7vqsypbj
MD5

0cc59ec57e69ceff07eb26f573fde25d
SHA1

e9041c6485f266478f127e4863299719018e94ac
SHA256

ed3f819518e48421a14c2a360fb766535f97690c8546e4a5911292e88afa8263
SHA512

a091a5e3d026c6a3a525d0f242c40b6e259d09223c4e3b717857bdcc6d01bd6e0348f3b1d0dd1be4a71f1db229c4e1c2be5c2106fcb577c1e0450916fe734005
SSDEEP

24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKensziXoSPqZScXoiRIKdlXo:GezaTF8FcNkNdfE0pZ9ozttwIRRXRnnS

Score

10^/10

xmrig discovery miner persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ed3f819518e48421a14c2a360fb766535f97690c8546e4a5911292e88afa8263.exe

Resource

win7-20241010-en

xmrig discovery miner persistence privilege_escalation

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ed3f819518e48421a14c2a360fb766535f97690c8546e4a5911292e88afa8263.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  ed3f819518e48421a14c2a360fb766535f97690c8546e4a5911292e88afa8263
- Size
  
  1.5MB
- MD5
  
  0cc59ec57e69ceff07eb26f573fde25d
- SHA1
  
  e9041c6485f266478f127e4863299719018e94ac
- SHA256
  
  ed3f819518e48421a14c2a360fb766535f97690c8546e4a5911292e88afa8263
- SHA512
  
  a091a5e3d026c6a3a525d0f242c40b6e259d09223c4e3b717857bdcc6d01bd6e0348f3b1d0dd1be4a71f1db229c4e1c2be5c2106fcb577c1e0450916fe734005
- SSDEEP
  
  24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKensziXoSPqZScXoiRIKdlXo:GezaTF8FcNkNdfE0pZ9ozttwIRRXRnnS
Score

10^/10

xmrig discovery miner persistence privilege_escalation
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigdiscoveryminerpersistenceprivilege_escalation

behavioral2

© 2018-2024

Terms | Privacy