xmrig | d046abb622410c5cbdb0f900fd4eec19f78f43052fade8e5d347c19edf27376a | Triage

Submit
Reports

Overview

overview

Static

static

d046abb622...6a.exe

windows7-x64

d046abb622...6a.exe

windows10-2004-x64

Sharing

General

Target

d046abb622410c5cbdb0f900fd4eec19f78f43052fade8e5d347c19edf27376a
Size

1.3MB
Sample

241218-gb4nvawrdn
MD5

6c47ec50c69d5f22a826bed16b7cbc5a
SHA1

871a8084e2bd1f02df1762398646095d745b649d
SHA256

d046abb622410c5cbdb0f900fd4eec19f78f43052fade8e5d347c19edf27376a
SHA512

c091a37aa183b7469ad7640e3175cb5dd3a17ea4cb1209222ca9f8874f92c084b221e2d23901a335ef1bab2c9c9062dfc4cf2c5e61000a6b5c91f9f21b5978b4
SSDEEP

24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszbWKDNEm/5QbPrQtOQzT:GezaTF8FcNkNdfE0pZ9ozttwIRx2T9Or

Score

10^/10

xmrig discovery miner persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

d046abb622410c5cbdb0f900fd4eec19f78f43052fade8e5d347c19edf27376a.exe

Resource

win7-20240903-en

xmrig miner persistence privilege_escalation

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

d046abb622410c5cbdb0f900fd4eec19f78f43052fade8e5d347c19edf27376a.exe

Resource

win10v2004-20241007-en

xmrig discovery miner

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  d046abb622410c5cbdb0f900fd4eec19f78f43052fade8e5d347c19edf27376a
- Size
  
  1.3MB
- MD5
  
  6c47ec50c69d5f22a826bed16b7cbc5a
- SHA1
  
  871a8084e2bd1f02df1762398646095d745b649d
- SHA256
  
  d046abb622410c5cbdb0f900fd4eec19f78f43052fade8e5d347c19edf27376a
- SHA512
  
  c091a37aa183b7469ad7640e3175cb5dd3a17ea4cb1209222ca9f8874f92c084b221e2d23901a335ef1bab2c9c9062dfc4cf2c5e61000a6b5c91f9f21b5978b4
- SSDEEP
  
  24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszbWKDNEm/5QbPrQtOQzT:GezaTF8FcNkNdfE0pZ9ozttwIRx2T9Or
Score

10^/10

xmrig miner persistence privilege_escalation discovery
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalation

behavioral2

xmrigdiscoveryminer

© 2018-2025

Terms | Privacy