Overview

overview

10

Static

static

10

f40c0a2e4b...f9.exe

windows7-x64

10

f40c0a2e4b...f9.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f40c0a2e4b6d42b35bbd1d42a5538fa7cfecfdc9925214e32d1cf86f80e7d4f9

  • Size

    2.6MB

  • MD5

    4839a80fccb4bc4c03a6c72feb8fefe3

  • SHA1

    806faf021aa3defe9e939406eea776953cf6fdd1

  • SHA256

    f40c0a2e4b6d42b35bbd1d42a5538fa7cfecfdc9925214e32d1cf86f80e7d4f9

  • SHA512

    8aff626c52aa3d9894dec0d98a6da5dcd6b33717dc7900da32e1010a6458a73b3641c1aa0932b651aebf2f3e77c99d9cd59d35cc225518a86ccf8cbfa5a0c80f

  • SSDEEP

    49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hjGhql0lQ0:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R7

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f40c0a2e4b6d42b35bbd1d42a5538fa7cfecfdc9925214e32d1cf86f80e7d4f9
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections