General

  • Target

    a89f1c368ce56f9d0c011b0757384901838cd495f07c9bb4ee968da25e6cd540

  • Size

    1.5MB

  • MD5

    c22b092f96eb2fd7ebf67944ba783019

  • SHA1

    57a320543cbfe5e4766ac4548cd60ff2c3738db2

  • SHA256

    a89f1c368ce56f9d0c011b0757384901838cd495f07c9bb4ee968da25e6cd540

  • SHA512

    27c2b8281c85bab49eb31b3f6cc1fc4218a2614225df6a32486833ac384bc5cd503f9db396814e5031acc85d40c971769dd3335dd11b9cf5b7dc14876379989f

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlGC78XIHbAYhbcZ4GhX/dERVwURI68csrEjhlPm90:knw9oUUEEDlGUJ8Y9ctYVk68a

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • a89f1c368ce56f9d0c011b0757384901838cd495f07c9bb4ee968da25e6cd540
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections