Overview

overview

10

Static

static

10

497531b17a...d4.exe

windows7-x64

10

497531b17a...d4.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    497531b17a760eb719517e4cb22bed4143769d08eec8b3eda1b18317a54dc4d4

  • Size

    2.4MB

  • MD5

    38c270c8922b59a8820504f485f4055e

  • SHA1

    8a785173868e871b57cd4ac2c2b004c8d9ffae9c

  • SHA256

    497531b17a760eb719517e4cb22bed4143769d08eec8b3eda1b18317a54dc4d4

  • SHA512

    1523614daa16218b0a85e4d7bd184401972d3d8844853317a31de426b4d5270da3e27f8a26f8a1cfad5d8722b8c6c0eb76e597dddde6214b5e737401a0562a48

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1Vr5s1PTleLUbq+yy8:NAB4

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 497531b17a760eb719517e4cb22bed4143769d08eec8b3eda1b18317a54dc4d4
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections