Overview

overview

10

Static

static

10

9394256cc7...0f.exe

windows7-x64

10

9394256cc7...0f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9394256cc79bfabfa9a9bb606395f2c909a84587aa7a5f0b896e022fe395dd0f

  • Size

    1.7MB

  • MD5

    1a3f320f28cff5a70ca3c1c351297fad

  • SHA1

    565d8ea743e4b437bac36455f66c708f8a9b4b67

  • SHA256

    9394256cc79bfabfa9a9bb606395f2c909a84587aa7a5f0b896e022fe395dd0f

  • SHA512

    2fa751ecc1f0d5b47c32d0856f6827818b5f62f78cc1135c4c0bfa461b97ba1e22cb63c86f77ffe07c36573145b38222a13ef005696991a1d9b4b0e13f61ba3a

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlWXWZ5PbcmC3f/DFNkTQbOF+sabJKMC+DFm+07yfYi:knw9oUUEEDl37jcmWH/xbnbJo+JmxXlY

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 9394256cc79bfabfa9a9bb606395f2c909a84587aa7a5f0b896e022fe395dd0f
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections