Overview

overview

10

Static

static

10

12abe45485...a8.exe

windows7-x64

10

12abe45485...a8.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    12abe454854d9c183a11eb550b92fdd1a4c0916ead5c6126b7f11a52d61345a8

  • Size

    2.5MB

  • MD5

    0c27b38a12e426f367c38fc48e80ab23

  • SHA1

    6694ad06ada224e20a5829ecebb06ac9106eacf9

  • SHA256

    12abe454854d9c183a11eb550b92fdd1a4c0916ead5c6126b7f11a52d61345a8

  • SHA512

    f913476eafc489f63ed88f4d34a10bb977c21d502e99de5f3d45789fdd178515789f954a7a9e1cb38bde331eaed5457098c441f4c8aa9ae816fec3c7e7c7971b

  • SSDEEP

    49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkHC0INx29o8Mp:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2RD

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 12abe454854d9c183a11eb550b92fdd1a4c0916ead5c6126b7f11a52d61345a8
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections