Overview

overview

10

Static

static

10

a1af37023a...47.exe

windows7-x64

10

a1af37023a...47.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a1af37023ac19f5a196124e0c0b6df2bdc52d11b2c2e615e0cdfdccbd78fb847

  • Size

    2.9MB

  • MD5

    01db5e4b655860ce446d6dee25eeb076

  • SHA1

    94dc349016b9151fd8c09d7aec28e8689a1e7ab5

  • SHA256

    a1af37023ac19f5a196124e0c0b6df2bdc52d11b2c2e615e0cdfdccbd78fb847

  • SHA512

    432dc6675822db89115ed83253a24be7efe90b5e62e32b7da977a349313d946a594a7af835344d09e651e5b8ff8f1def6b2a0c4309f479318bd408d8c3c9d05c

  • SSDEEP

    49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkibTIA5I4TNrpDn:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2RP

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a1af37023ac19f5a196124e0c0b6df2bdc52d11b2c2e615e0cdfdccbd78fb847
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections