General

  • Target

    8869008c29848ad82e7201fb509eed0c15ebc7edc123c765a9dbf55a33417fb4

  • Size

    3.9MB

  • MD5

    d6f7f723c4cbd76d17dbc4e97c8a6d59

  • SHA1

    5718b4110551da94ddc6a5933eb727d69669b8fc

  • SHA256

    8869008c29848ad82e7201fb509eed0c15ebc7edc123c765a9dbf55a33417fb4

  • SHA512

    9a7db9e6737808b38aae274a2f8bef44d186815806a9d52b7bf7ac7b607f9b43b4a428f73266b81197c02d217ccdec065c81b85c4ef58eaa6fb6e1239d02f980

  • SSDEEP

    98304:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrWm:SbBeSFkq

Score
10/10

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8869008c29848ad82e7201fb509eed0c15ebc7edc123c765a9dbf55a33417fb4
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections