xmrig | acb8f1af30eec1a95d81db5d93182da24c8f8338b50a084f3a9c373fea2c3743

General

Target

acb8f1af30eec1a95d81db5d93182da24c8f8338b50a084f3a9c373fea2c3743
Size

3.1MB
MD5

3f7fbb876cadcf6fdeec52c512a8f19b
SHA1

12eaab323695a5ddbc3487a4b16a2bc93f6cb70d
SHA256

acb8f1af30eec1a95d81db5d93182da24c8f8338b50a084f3a9c373fea2c3743
SHA512

c41f890f348d2c69f0b7736a5ceae46af332f68c90a16d16965ee712ec74546e96f34ff1e7947cef4fdb1f45fff5e952aeb50f2c1b56cdf2bc9d3e381de08f8f
SSDEEP

98304:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrWa:SbBeSFke

Score

10^/10

Detects executables containing URLs to raw contents of a Github gist 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICIOUS_EXE_RawGitHub_URL

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
sample	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acb8f1af30eec1a95d81db5d93182da24c8f8338b50a084f3a9c373fea2c3743