Overview

overview

10

Static

static

10

bd79ad9c06...33.exe

windows7-x64

10

bd79ad9c06...33.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bd79ad9c06e16d730c6e1e48e0d1b2a4f2c4d522b6317f9f1757ba5afe0dc833

  • Size

    2.0MB

  • MD5

    0132d66a15303e44fb329926121a75f2

  • SHA1

    87a4e3a1dfac2c470868cde2bda7a93d669f4568

  • SHA256

    bd79ad9c06e16d730c6e1e48e0d1b2a4f2c4d522b6317f9f1757ba5afe0dc833

  • SHA512

    45721e27c7f04a62dd1be69bee1e263e4fda055fe0b39edeae6f351351fea1ab0a6bb364bd73c1ea06203178380aaaa4625e794b3058bd3fedff029c43a59407

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82S5k7hQ4O:NABw

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • bd79ad9c06e16d730c6e1e48e0d1b2a4f2c4d522b6317f9f1757ba5afe0dc833
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections