Overview

overview

10

Static

static

10

05b0c5ce7d...a8.exe

windows7-x64

10

05b0c5ce7d...a8.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    05b0c5ce7dccaa7a18316d3745c2154cba8f44dff09cca95a9248a2e8f4d48a8

  • Size

    1.7MB

  • MD5

    13f0b1d09feb2bcbfe88752b6b6d6826

  • SHA1

    7be960026c31195d0878afff2e524ef6ffbfed42

  • SHA256

    05b0c5ce7dccaa7a18316d3745c2154cba8f44dff09cca95a9248a2e8f4d48a8

  • SHA512

    d2daac04ea5abab11f6772e6684600eb5c9bf983c3a86c084dd4e69f9da32cfc533c353af1b3e892489e418b6c984d7a71f1c7141a3cdcf8940b5c513e172ed2

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlGC78XCejHeOuU4GrTsO20J1nycsWB1kpbGlOO+:knw9oUUEEDlGUrMsWfbwGz+

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 05b0c5ce7dccaa7a18316d3745c2154cba8f44dff09cca95a9248a2e8f4d48a8
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections