Overview

overview

10

Static

static

10

e5a30c28b8...56.exe

windows7-x64

10

e5a30c28b8...56.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e5a30c28b87e58439b5afd297e388f2b976772341d6e19b4b8adc9c4d216db56

  • Size

    3.0MB

  • MD5

    9c0d79877fc3c9914e8e9b769d4e815c

  • SHA1

    45ed71da304393c2e96e6727d0b797521b292a6f

  • SHA256

    e5a30c28b87e58439b5afd297e388f2b976772341d6e19b4b8adc9c4d216db56

  • SHA512

    7ec8ba7fba9203d3a00a71aa6a7063c538bbe9cb6fb66457fe9d4262b5661829f13fc106c173a87f0bf112c4ce118c861419d31647894e0da32dea2f6be2d58d

  • SSDEEP

    98304:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrWb:SbBeSFkH

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e5a30c28b87e58439b5afd297e388f2b976772341d6e19b4b8adc9c4d216db56
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections