xmrig | 7635024d0b547c494661ab736544ba9cddcef14d38da80fa824f8446774a8726 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

7635024d0b...26.exe

windows7-x64

7635024d0b...26.exe

windows10-2004-x64

Sharing

General

Target

7635024d0b547c494661ab736544ba9cddcef14d38da80fa824f8446774a8726
Size

1.1MB
Sample

250217-camayswlfs
MD5

37a80f4e3fd625c585fb88877b074b7e
SHA1

1bd58eb991352548ffaab379d076798463394cea
SHA256

7635024d0b547c494661ab736544ba9cddcef14d38da80fa824f8446774a8726
SHA512

f1a11dfe9751d4f3d942544c1ef87b7f51a3a3319ce3867a34dca9bb608f0ead025bda99d3e59ece6680eceb7292646fcc0f9fda620492d32b530acdc0a0cfd7
SSDEEP

24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9Lbpwlbena2qgehKfHhdRgMS:GezaTF8FcNkNdfE0pZ9ozttwp8qAHhbu

Score

10^/10

xmrig discovery miner

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

7635024d0b547c494661ab736544ba9cddcef14d38da80fa824f8446774a8726.exe

Resource

win7-20241023-en

xmrig discovery miner

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

7635024d0b547c494661ab736544ba9cddcef14d38da80fa824f8446774a8726.exe

Resource

win10v2004-20250211-en

xmrig discovery miner

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  7635024d0b547c494661ab736544ba9cddcef14d38da80fa824f8446774a8726
- Size
  
  1.1MB
- MD5
  
  37a80f4e3fd625c585fb88877b074b7e
- SHA1
  
  1bd58eb991352548ffaab379d076798463394cea
- SHA256
  
  7635024d0b547c494661ab736544ba9cddcef14d38da80fa824f8446774a8726
- SHA512
  
  f1a11dfe9751d4f3d942544c1ef87b7f51a3a3319ce3867a34dca9bb608f0ead025bda99d3e59ece6680eceb7292646fcc0f9fda620492d32b530acdc0a0cfd7
- SSDEEP
  
  24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9Lbpwlbena2qgehKfHhdRgMS:GezaTF8FcNkNdfE0pZ9ozttwp8qAHhbu
Score

10^/10

xmrig discovery miner
- Xmrig family
  xmrig
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigdiscoveryminer

behavioral2

xmrigdiscoveryminer

© 2018-2025

Terms | Privacy