xmrig | 373cb17b34dfaf45b39673cc35432f27349952120d550deac77054378c858bc4 | Triage

Submit
Reports

Overview

overview

Static

static

373cb17b34...c4.exe

windows7-x64

373cb17b34...c4.exe

windows10-2004-x64

Sharing

General

Target

373cb17b34dfaf45b39673cc35432f27349952120d550deac77054378c858bc4.exe
Size

1.3MB
Sample

240705-eqvndascrl
MD5

716955f2a4d4cc08aadb4ed30b448cc0
SHA1

6b7d9ee38632dc2a21aeef182d941a923893760c
SHA256

373cb17b34dfaf45b39673cc35432f27349952120d550deac77054378c858bc4
SHA512

8dc2ae23ea80bf9abf90b25fbf1f73a076a987d6f08eb27d8c1426b326b49c3d3fc37cf6e82072e1687d299a9ca5c7e2e75aa6a6848fb2c686862edd186fd8cc
SSDEEP

24576:BezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbEwlKjpv3OBC6BwDTKY924L:BezaTF8FcNkNdfE0pZ9ozt4wISOmY92q

Score

10^/10

xmrig miner persistence privilege_escalation upx

Static task

static1

miner upx xmrig

4 signatures

Behavioral task

behavioral1

Sample

373cb17b34dfaf45b39673cc35432f27349952120d550deac77054378c858bc4.exe

Resource

win7-20240508-en

xmrig miner persistence privilege_escalation upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

373cb17b34dfaf45b39673cc35432f27349952120d550deac77054378c858bc4.exe

Resource

win10v2004-20240508-en

xmrig miner upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  373cb17b34dfaf45b39673cc35432f27349952120d550deac77054378c858bc4.exe
- Size
  
  1.3MB
- MD5
  
  716955f2a4d4cc08aadb4ed30b448cc0
- SHA1
  
  6b7d9ee38632dc2a21aeef182d941a923893760c
- SHA256
  
  373cb17b34dfaf45b39673cc35432f27349952120d550deac77054378c858bc4
- SHA512
  
  8dc2ae23ea80bf9abf90b25fbf1f73a076a987d6f08eb27d8c1426b326b49c3d3fc37cf6e82072e1687d299a9ca5c7e2e75aa6a6848fb2c686862edd186fd8cc
- SSDEEP
  
  24576:BezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbEwlKjpv3OBC6BwDTKY924L:BezaTF8FcNkNdfE0pZ9ozt4wISOmY92q
Score

10^/10

xmrig miner persistence privilege_escalation upx
- xmrig
  XMRig is a high performance, open source, cross platform CPU/GPU miner.
  miner xmrig
- XMRig Miner payload
  miner
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

xmrigminerpersistenceprivilege_escalationupx

behavioral2

© 2018-2024

Terms | Privacy