Overview

overview

10

Static

static

10

1b478e1368...b4.exe

windows7-x64

10

1b478e1368...b4.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1b478e13680ac96b23bafedaae6bff811b603e6dbdda4c3f489f1410e143edb4

  • Size

    2.5MB

  • MD5

    1ae8a81a64fbb96f65320350816d5922

  • SHA1

    36260f3f1bbc7e993d020d3ab02b9209d91c21e1

  • SHA256

    1b478e13680ac96b23bafedaae6bff811b603e6dbdda4c3f489f1410e143edb4

  • SHA512

    696e09d8d5de38d088a53ef4d1a72dc9b9f17a5491bcb8897f3af73cfe6f9a4915a54bd4f37bb64c41b523fdd1f12a583047ccbd17aa229884e913733e8fa6dc

  • SSDEEP

    49152:N0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8DzJuJUJGW:N0GnJMOWPClFdx6e0EALKWVTffZiPAcZ

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1b478e13680ac96b23bafedaae6bff811b603e6dbdda4c3f489f1410e143edb4
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections