Overview

overview

10

Static

static

10

0297858429...2b.exe

windows7-x64

10

0297858429...2b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0297858429e83b6d7363a7afd123624a0018188fc75db39ef89901539d82d82b

  • Size

    1.8MB

  • MD5

    b6b469afc7091bbfc92bb259b88f238d

  • SHA1

    47fd6c7a5df47dea30976ff4645aff98ac0a2f85

  • SHA256

    0297858429e83b6d7363a7afd123624a0018188fc75db39ef89901539d82d82b

  • SHA512

    b648ca7b73c68c252a12c189fe722c73cff15d2ed585a594d02459b589eb83ad1d1b765aa9f105dab1119c3a7c9f9b1a555135ad4de5d0381907f9635c81907d

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pCkc3uB4t:NAB0

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 0297858429e83b6d7363a7afd123624a0018188fc75db39ef89901539d82d82b
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections