xmrig | 6f1fb5cc5c2103d3492827f7c11792da3b9200776c503cdb3f29d837137a0390 | Triage

Submit
Reports

Overview

overview

Static

static

6f1fb5cc5c...0N.exe

windows7-x64

6f1fb5cc5c...0N.exe

windows10-2004-x64

Sharing

General

Target

6f1fb5cc5c2103d3492827f7c11792da3b9200776c503cdb3f29d837137a0390N.exe
Size

2.2MB
Sample

250127-sffncsvleq
MD5

f8d09b3be31e1d7858d8a0fe728fd440
SHA1

6de133f82e25df29c6d77dd67e55fec3d5954f23
SHA256

6f1fb5cc5c2103d3492827f7c11792da3b9200776c503cdb3f29d837137a0390
SHA512

5ab7173ecff2b15b6aeeaf2b73cae6060442b9abb71d3d66d2ea5b695c8a8bac300ce2d7d5c75829bf9699aba644adbb13cae6e143f484304e6acc99e087b119
SSDEEP

49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1Vr5s1PTopi:NAB3

Score

10^/10

xmrig execution miner upx

Static task

static1

upx miner xmrig

4 signatures

Behavioral task

behavioral1

Sample

6f1fb5cc5c2103d3492827f7c11792da3b9200776c503cdb3f29d837137a0390N.exe

Resource

win7-20240903-en

xmrig execution miner upx

windows7-x64

11 signatures

120 seconds

Behavioral task

behavioral2

Sample

6f1fb5cc5c2103d3492827f7c11792da3b9200776c503cdb3f29d837137a0390N.exe

Resource

win10v2004-20241007-en

xmrig execution miner upx

windows10-2004-x64

10 signatures

120 seconds

Malware Config

Targets

- Target
  
  6f1fb5cc5c2103d3492827f7c11792da3b9200776c503cdb3f29d837137a0390N.exe
- Size
  
  2.2MB
- MD5
  
  f8d09b3be31e1d7858d8a0fe728fd440
- SHA1
  
  6de133f82e25df29c6d77dd67e55fec3d5954f23
- SHA256
  
  6f1fb5cc5c2103d3492827f7c11792da3b9200776c503cdb3f29d837137a0390
- SHA512
  
  5ab7173ecff2b15b6aeeaf2b73cae6060442b9abb71d3d66d2ea5b695c8a8bac300ce2d7d5c75829bf9699aba644adbb13cae6e143f484304e6acc99e087b119
- SSDEEP
  
  49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1Vr5s1PTopi:NAB3
Score

10^/10

xmrig execution miner upx
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Command and Scripting Interpreter: PowerShell
  Powershell Invoke Web Request.
  execution
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigexecutionminerupx

behavioral2

xmrigexecutionminerupx

© 2018-2025

Terms | Privacy