Overview

overview

10

Static

static

10

e48eaf00b0...a7.exe

windows7-x64

10

e48eaf00b0...a7.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    e48eaf00b01fd0948c6af42b7ce84108a2f032d0836ebf70b1b0b6f5fcac19a7

  • Size

    1.4MB

  • MD5

    26588917c8ca83b4f64e411fb6586a27

  • SHA1

    6c9bf15f14ef9181d2e635b01bf17de7ef36bdd2

  • SHA256

    e48eaf00b01fd0948c6af42b7ce84108a2f032d0836ebf70b1b0b6f5fcac19a7

  • SHA512

    c64587c8c2204ed2998d203df722ed652682e9bc5e878c5df8421bab2018903d951456b6edd1edf8bbe2d8a661cf9f7f0355bad30ebad2d26261d136ca33521a

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlia+zzDwxOpyinKCB9WIoC3IT5xHvHsaXiJwctOLoq:knw9oUUEEDlnCNfeT5J0aXiJY

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • e48eaf00b01fd0948c6af42b7ce84108a2f032d0836ebf70b1b0b6f5fcac19a7
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections