Overview

overview

10

Static

static

10

d84a9a32eb...a0.exe

windows7-x64

10

d84a9a32eb...a0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d84a9a32ebdda4c4d30c03b94d19f0ce1f6823fd664c90db70dc0f1de318d7a0

  • Size

    2.2MB

  • MD5

    71b6185f72e59a573e1ba838213a209f

  • SHA1

    7bcfdcfde7155aa048a771a80db832d755df8947

  • SHA256

    d84a9a32ebdda4c4d30c03b94d19f0ce1f6823fd664c90db70dc0f1de318d7a0

  • SHA512

    f2649c8f83bf83ea4fdeae516854513d91cc24a0b2fe3642a2efce9ce2da1eae4d3c23520e4d845e8abb42a7a26f67ddc1f48833d6bf705ccbc96e306583f365

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pCkc30JqMs2B:NABl

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • d84a9a32ebdda4c4d30c03b94d19f0ce1f6823fd664c90db70dc0f1de318d7a0
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections