xmrig | 0bd6af5bee3ecd3a7810dc989d0af7d8779a8748515e19c7d272eedebab21542 | Triage

Submit
Reports

Overview

overview

Static

static

0bd6af5bee...42.exe

windows7-x64

0bd6af5bee...42.exe

windows10-2004-x64

Sharing

General

Target

0bd6af5bee3ecd3a7810dc989d0af7d8779a8748515e19c7d272eedebab21542
Size

1.6MB
Sample

241222-yac8yaxkhq
MD5

32b09254d6df2799295df4487e2c8149
SHA1

059ade549fc73f0506ee092531fe3f33d6b8529f
SHA256

0bd6af5bee3ecd3a7810dc989d0af7d8779a8748515e19c7d272eedebab21542
SHA512

8df2b566aadb3bba231d28d3bf00ff1378ffd2e704d20567dd3760977c54a92854229415f49b7a58db9428223ecab0487182bba55db72ce1c5680da98a711135
SSDEEP

49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOBZlCpmOv:GemTLkNdfE0pZyI

Score

10^/10

xmrig miner persistence privilege_escalation

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

0bd6af5bee3ecd3a7810dc989d0af7d8779a8748515e19c7d272eedebab21542.exe

Resource

win7-20240903-en

xmrig miner persistence privilege_escalation

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

0bd6af5bee3ecd3a7810dc989d0af7d8779a8748515e19c7d272eedebab21542.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  0bd6af5bee3ecd3a7810dc989d0af7d8779a8748515e19c7d272eedebab21542
- Size
  
  1.6MB
- MD5
  
  32b09254d6df2799295df4487e2c8149
- SHA1
  
  059ade549fc73f0506ee092531fe3f33d6b8529f
- SHA256
  
  0bd6af5bee3ecd3a7810dc989d0af7d8779a8748515e19c7d272eedebab21542
- SHA512
  
  8df2b566aadb3bba231d28d3bf00ff1378ffd2e704d20567dd3760977c54a92854229415f49b7a58db9428223ecab0487182bba55db72ce1c5680da98a711135
- SSDEEP
  
  49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOBZlCpmOv:GemTLkNdfE0pZyI
Score

10^/10

xmrig miner persistence privilege_escalation
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalation

behavioral2

© 2018-2024

Terms | Privacy