Overview

overview

10

Static

static

10

NEAS.6043a...50.exe

windows7-x64

10

NEAS.6043a...50.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.6043a57abddbaadae25e0b10b0a23750.exe

  • Size

    1.2MB

  • MD5

    6043a57abddbaadae25e0b10b0a23750

  • SHA1

    ee0129cdb2c07ac26741b1eeeccb45393466dac4

  • SHA256

    0f899bb6a03b1e84e435eab09254441e38480f12d8295bdd6b493f2f07738d56

  • SHA512

    1cb429b2234c341b47ad6728640d966f26a69c5bf356f407f43c0f203ec748b93b8a29983a96f4ffc76b081badbde31ed6e5a6418032d672e5eb5d00fdf76ea3

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQtpj/Yz6XVSvmHaZ3a:ROdWCCi7/raZ5aIwC+Agr6St1lOqh

Score
10/10
upxminerkpotxmrig

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
    kpot
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.6043a57abddbaadae25e0b10b0a23750.exe
    .exe windows:6 windows x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64


    Headers

    Sections