Overview

overview

10

Static

static

10

2025-03-31...at.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-31_fd6057980c0ea5911a7106c356b072f6_cobalt-strike_poet-rat

  • Size

    3.9MB

  • Sample

    250331-sl169aswbw

  • MD5

    fd6057980c0ea5911a7106c356b072f6

  • SHA1

    f134d8ca5ad8450b76b7a86b024d87f683d4652e

  • SHA256

    e543432d278914ad7deddbe3a92024ad991cb1fa0230decb2fa71b9801e1df3b

  • SHA512

    a86976253eea85175ec0a2f59be52a2fb338a965675395d9fd728d1b95239d4cbb055a78be801ac5324d54df0c0719ed474dc58775333406f768fc04f8354b82

  • SSDEEP

    49152:oezaTF8FcNkNdfE0pZ9ozt4wIt56uL3pgrCEdMKPFotsgEBr6GjvzW+UBA3GdAO8:oemTLkNdfE0pZrt56utgpPFotBER/x

Score
10/10
xmrigminerpersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      2025-03-31_fd6057980c0ea5911a7106c356b072f6_cobalt-strike_poet-rat

    • Size

      3.9MB

    • MD5

      fd6057980c0ea5911a7106c356b072f6

    • SHA1

      f134d8ca5ad8450b76b7a86b024d87f683d4652e

    • SHA256

      e543432d278914ad7deddbe3a92024ad991cb1fa0230decb2fa71b9801e1df3b

    • SHA512

      a86976253eea85175ec0a2f59be52a2fb338a965675395d9fd728d1b95239d4cbb055a78be801ac5324d54df0c0719ed474dc58775333406f768fc04f8354b82

    • SSDEEP

      49152:oezaTF8FcNkNdfE0pZ9ozt4wIt56uL3pgrCEdMKPFotsgEBr6GjvzW+UBA3GdAO8:oemTLkNdfE0pZrt56utgpPFotBER/x

    Score
    10/10
    xmrigminerpersistenceprivilege_escalationupx

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks