Overview

overview

10

Static

static

10

a45d2179fb...26.exe

windows7-x64

10

a45d2179fb...26.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a45d2179fb49f932ee345e45caa5dc80c46709f98675c692ac12f070c24dd726

  • Size

    1.2MB

  • MD5

    79dee06606eb1109071070eb4abf479f

  • SHA1

    0e91031e2985b5df10cc63434a5877535b1a6f47

  • SHA256

    a45d2179fb49f932ee345e45caa5dc80c46709f98675c692ac12f070c24dd726

  • SHA512

    8b5b96cf44ba0d5e8238405de7238367901237d98fae44c5155ebe3491721f941289b9d734dc7163faf889390aae01dda02654f21b03cc239bab62d865de66bf

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUkX3GX:ROdWCCi7/raZ5aIwC+Agr6SNN

Score
10/10
upxminerkpotxmrig

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
    kpot
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • a45d2179fb49f932ee345e45caa5dc80c46709f98675c692ac12f070c24dd726
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections