xmrig | 34120b5204cb6e8e1cedd5795d548271b3aff0a2967f70c0974d6f99aa833f12

General

Target

34120b5204cb6e8e1cedd5795d548271b3aff0a2967f70c0974d6f99aa833f12
Size

3.7MB
MD5

eb5eda974a7b05c4f9b631e29d8d4646
SHA1

1613463e3eee0a910dc09e4712ca4911ce0eef06
SHA256

34120b5204cb6e8e1cedd5795d548271b3aff0a2967f70c0974d6f99aa833f12
SHA512

9bab77168ff515b3fddb4d836484bc9e0ab333a9166451d2a93d8eec5a6417c692e794437ae1fd3cdb7edee6d170d3afd24fdafc538f744c9509ee5e1059790f
SSDEEP

98304:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrW9:SbBeSFkx

Score

10^/10

Detects executables containing URLs to raw contents of a Github gist 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICIOUS_EXE_RawGitHub_URL

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
sample	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34120b5204cb6e8e1cedd5795d548271b3aff0a2967f70c0974d6f99aa833f12