General

  • Target

    f2f644ae426b33ff04f4d15f5b1540c0045451e491dda9f7bc12caa552508ca4

  • Size

    1.1MB

  • MD5

    b6efb3e9037e12a175e4b4871d22099f

  • SHA1

    1887b7e253ea2f8dd9d2fedc5a6051be4358e9ae

  • SHA256

    f2f644ae426b33ff04f4d15f5b1540c0045451e491dda9f7bc12caa552508ca4

  • SHA512

    c8a57ba7e9e11d731d62f825ab022fc439bd5120561205f0f71c81d5fa7a24790688be8d29c811bb405eedd031b52bf50d86bfa42c20ea668b8ed4d3587ab501

  • SSDEEP

    24576:RVIl/WDGCi7/qkatXBF6727XL1+KvSjsvxP09qYOUH:ROdWCCi7/rahHxxZVlUH

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • f2f644ae426b33ff04f4d15f5b1540c0045451e491dda9f7bc12caa552508ca4
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections