xmrig | f03e577b9f65b4318c9ed2acb510c5c7f681ff07446bdc66f105028eea327908 | Triage

Submit
Reports

Overview

overview

Static

static

1

minstall.sh

ubuntu-18.04-amd64

minstall.sh

debian-9-armhf

minstall.sh

debian-9-mips

minstall.sh

debian-9-mipsel

Sharing

General

Target

minstall.sh
Size

1KB
Sample

250405-2mrtmszk14
MD5

a40271ae5c12ad0c61ec0409fc3723d1
SHA1

79077d993d18b6be073e899d62bef022c957c17f
SHA256

f03e577b9f65b4318c9ed2acb510c5c7f681ff07446bdc66f105028eea327908
SHA512

20b68e61d328a3ab94e5ea5413a90b242b72d3dcf19ac398af10ae3247abafb3f3214ed1dc1a6823be74871ae056a4b03cdba7ed6af85621a9905c278386e388

Score

10^/10

xmrig xmrig_linux antivm discovery linux miner

Static task

static1

Behavioral task

behavioral1

Sample

minstall.sh

Resource

ubuntu1804-amd64-20240611-en

xmrig xmrig_linux antivm discovery miner

ubuntu-18.04-amd64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

minstall.sh

Resource

debian9-armhf-20240611-en

xmrig xmrig_linux discovery miner

debian-9-armhf

8 signatures

150 seconds

Behavioral task

behavioral3

Sample

minstall.sh

Resource

debian9-mipsbe-20240729-en

xmrig xmrig_linux discovery miner

debian-9-mips

8 signatures

150 seconds

Behavioral task

behavioral4

Sample

minstall.sh

Resource

debian9-mipsel-20240611-en

xmrig xmrig_linux discovery miner

debian-9-mipsel

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  minstall.sh
- Size
  
  1KB
- MD5
  
  a40271ae5c12ad0c61ec0409fc3723d1
- SHA1
  
  79077d993d18b6be073e899d62bef022c957c17f
- SHA256
  
  f03e577b9f65b4318c9ed2acb510c5c7f681ff07446bdc66f105028eea327908
- SHA512
  
  20b68e61d328a3ab94e5ea5413a90b242b72d3dcf19ac398af10ae3247abafb3f3214ed1dc1a6823be74871ae056a4b03cdba7ed6af85621a9905c278386e388
Score

10^/10

xmrig xmrig_linux antivm discovery miner
- XMRig Miner payload
  miner
- Xmrig family
  xmrig
- Xmrig_linux family
  xmrig_linux
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig_linux
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- Executes dropped EXE
- Checks hardware identifiers (DMI)
  Checks DMI information which indicate if the system is a virtual machine.
  antivm
- Reads hardware information
  Accesses system info like serial numbers, manufacturer names etc.
  discovery
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

Virtualization/Sandbox Evasion

System Checks

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xmrigxmrig_linuxantivmdiscoveryminer

behavioral2

xmrigxmrig_linuxdiscoveryminer

behavioral3

xmrigxmrig_linuxdiscoveryminer

behavioral4

xmrigxmrig_linuxdiscoveryminer

© 2018-2025

Terms | Privacy