Overview

overview

10

Static

static

10

2025-03-31...ig.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-31_a8157cc1d42f278bca235cc444cbb21f_aspxspy_black-basta_poison-ivy_xmrig

  • Size

    2.4MB

  • Sample

    250331-skvm3svmz4

  • MD5

    a8157cc1d42f278bca235cc444cbb21f

  • SHA1

    95a036311c09f91adeadc11c4769cb624c893d6f

  • SHA256

    ea82a979101614582a63e911bb7b75d3765edd8f7f5cb6e9d476630c33191db5

  • SHA512

    83d56f1e639f73b35fa6b5a6ed8f6dbd7e17586790f79e7db2c4025b0eeef52c52beebe967668a7d4f0aa817eab5b411f66ac68feb908466191b7b385f22282c

  • SSDEEP

    49152:w0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8Dze7jcmWHfZAoN0:w0GnJMOWPClFdx6e0EALKWVTffZiPAce

Score
10/10
xmrigminerpersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      2025-03-31_a8157cc1d42f278bca235cc444cbb21f_aspxspy_black-basta_poison-ivy_xmrig

    • Size

      2.4MB

    • MD5

      a8157cc1d42f278bca235cc444cbb21f

    • SHA1

      95a036311c09f91adeadc11c4769cb624c893d6f

    • SHA256

      ea82a979101614582a63e911bb7b75d3765edd8f7f5cb6e9d476630c33191db5

    • SHA512

      83d56f1e639f73b35fa6b5a6ed8f6dbd7e17586790f79e7db2c4025b0eeef52c52beebe967668a7d4f0aa817eab5b411f66ac68feb908466191b7b385f22282c

    • SSDEEP

      49152:w0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8Dze7jcmWHfZAoN0:w0GnJMOWPClFdx6e0EALKWVTffZiPAce

    Score
    10/10
    xmrigminerpersistenceprivilege_escalationupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks