Overview

overview

10

Static

static

10

17b728e207...8d.exe

windows7-x64

10

17b728e207...8d.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    17b728e2073d7d4b144b5779c1ffb7e918cd63b94c14fb05c8ab45b8301ead8d

  • Size

    2.5MB

  • MD5

    c0005df27f03fbf68e0c01156583654a

  • SHA1

    0966db3ee8b2f39750d5e441d3967674085098fc

  • SHA256

    17b728e2073d7d4b144b5779c1ffb7e918cd63b94c14fb05c8ab45b8301ead8d

  • SHA512

    f1db2f44f9046065fae9b20f8ca6ce52739e36bb1664581d1465c4d5ed9c388fd9bf1cf5b9f05ebd9517f5fefec97c60d6275f0282dfdac19a6c7840e4795c76

  • SSDEEP

    49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkyWvW/Xfy7:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R2

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 17b728e2073d7d4b144b5779c1ffb7e918cd63b94c14fb05c8ab45b8301ead8d
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections