xmrig | eb425f4722d6bd9c3b1fbc8db1aedd0085b56c46e9a9b42179d0191cb4bc458b | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...8b.exe

windows7-x64

JaffaCakes...8b.exe

windows10-2004-x64

1

Sharing

General

Target

JaffaCakes118_eb425f4722d6bd9c3b1fbc8db1aedd0085b56c46e9a9b42179d0191cb4bc458b
Size

2.2MB
Sample

241226-y1372sykdj
MD5

1e2e4ebafb6afef5ad307b86542483dc
SHA1

73cbc47b9d5546f0ca3ab5a1e8444176e3fa480f
SHA256

eb425f4722d6bd9c3b1fbc8db1aedd0085b56c46e9a9b42179d0191cb4bc458b
SHA512

ee08c68a4b7f8f8ff187a337bc80abcb6f5dcc4963e8ddfdbf06ce079a3cf916058a3b83e7ea6c8593e8f2414edcf5fd8ddbd43619178d44b5794522e8d6cea1
SSDEEP

49152:EnCbL83y9FdfE0pZ0zCa4wI156uL3pgrCEdMKPFoL:EniLf9FdfE0pZB156utgpPFoL

Score

10^/10

xmrig miner persistence privilege_escalation upx

Static task

static1

miner upx xmrig

4 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_eb425f4722d6bd9c3b1fbc8db1aedd0085b56c46e9a9b42179d0191cb4bc458b.exe

Resource

win7-20241010-en

xmrig miner persistence privilege_escalation upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_eb425f4722d6bd9c3b1fbc8db1aedd0085b56c46e9a9b42179d0191cb4bc458b.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_eb425f4722d6bd9c3b1fbc8db1aedd0085b56c46e9a9b42179d0191cb4bc458b
- Size
  
  2.2MB
- MD5
  
  1e2e4ebafb6afef5ad307b86542483dc
- SHA1
  
  73cbc47b9d5546f0ca3ab5a1e8444176e3fa480f
- SHA256
  
  eb425f4722d6bd9c3b1fbc8db1aedd0085b56c46e9a9b42179d0191cb4bc458b
- SHA512
  
  ee08c68a4b7f8f8ff187a337bc80abcb6f5dcc4963e8ddfdbf06ce079a3cf916058a3b83e7ea6c8593e8f2414edcf5fd8ddbd43619178d44b5794522e8d6cea1
- SSDEEP
  
  49152:EnCbL83y9FdfE0pZ0zCa4wI156uL3pgrCEdMKPFoL:EniLf9FdfE0pZB156utgpPFoL
Score

10^/10

xmrig miner persistence privilege_escalation upx
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalationupx

behavioral2

© 2018-2025

Terms | Privacy