xmrig | 986b11952fe8b5764c39bc39ab3656b4f3b14c331cf32cfea6d8b0079c81e5f3 | Triage

Submit
Reports

Overview

overview

Static

static

1

sshd

ubuntu-18.04-amd64

3

sshd

ubuntu-20.04-amd64

3

sshd

ubuntu-22.04-amd64

sshd

ubuntu-24.04-amd64

Resubmissions

20-01-2025 17:41

250120-v9nxya1mcx 10

20-01-2025 17:38

250120-v73y3s1lex 10

Sharing

General

Target

sshd
Size

496B
Sample

250120-v73y3s1lex
MD5

bde8eb67612ae4246e358fc8a75e4f04
SHA1

d1e03cf4130281b525f8a5d51abc3c3917c58d58
SHA256

986b11952fe8b5764c39bc39ab3656b4f3b14c331cf32cfea6d8b0079c81e5f3
SHA512

ac62ad5f3628caef1f68a4ead799e234cb440c321a51ea589e442ceee6b24ce3f56b4c958e770abb4b7ddfbed8c731cd801b58f3ce68011b53c3b8c46688eb28

Score

10^/10

xmrig xmrig_linux antivm discovery linux miner

Static task

static1

Behavioral task

behavioral1

Sample

sshd

Resource

ubuntu1804-amd64-20240508-en

ubuntu-18.04-amd64

2 signatures

900 seconds

Behavioral task

behavioral2

Sample

sshd

Resource

ubuntu2004-amd64-20240729-en

ubuntu-20.04-amd64

2 signatures

900 seconds

Behavioral task

behavioral3

Sample

sshd

Resource

ubuntu2204-amd64-20240611-en

xmrig xmrig_linux antivm discovery miner

ubuntu-22.04-amd64

11 signatures

900 seconds

Behavioral task

behavioral4

Sample

sshd

Resource

ubuntu2404-amd64-20240729-en

xmrig xmrig_linux antivm discovery miner

ubuntu-24.04-amd64

11 signatures

900 seconds

Malware Config

Targets

- Target
  
  sshd
- Size
  
  496B
- MD5
  
  bde8eb67612ae4246e358fc8a75e4f04
- SHA1
  
  d1e03cf4130281b525f8a5d51abc3c3917c58d58
- SHA256
  
  986b11952fe8b5764c39bc39ab3656b4f3b14c331cf32cfea6d8b0079c81e5f3
- SHA512
  
  ac62ad5f3628caef1f68a4ead799e234cb440c321a51ea589e442ceee6b24ce3f56b4c958e770abb4b7ddfbed8c731cd801b58f3ce68011b53c3b8c46688eb28
Score

10^/10

discovery xmrig xmrig_linux antivm miner
- XMRig Miner payload
  miner
- Xmrig family
  xmrig
- Xmrig_linux family
  xmrig_linux
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig_linux
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- Checks hardware identifiers (DMI)
  Checks DMI information which indicate if the system is a virtual machine.
  antivm
- Reads hardware information
  Accesses system info like serial numbers, manufacturer names etc.
  discovery
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Virtualization/Sandbox Evasion

System Checks

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

xmrigxmrig_linuxantivmdiscoveryminer

behavioral4

xmrigxmrig_linuxantivmdiscoveryminer

© 2018-2025

Terms | Privacy