Overview

overview

10

Static

static

10

248a1bb138...54.exe

windows7-x64

10

248a1bb138...54.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    248a1bb1387c9c2e620072d5fc754749c26394ffccc820db16471da7f53a8854

  • Size

    1.5MB

  • MD5

    ab7112ce3ff98200c827ec68028271ea

  • SHA1

    39653ec9d1c4079048f6fc48ef744a2ad16cd49a

  • SHA256

    248a1bb1387c9c2e620072d5fc754749c26394ffccc820db16471da7f53a8854

  • SHA512

    a40845876f14067cd9012fc976dc35dd6e4d05b24a317e50890ee5f3360f2c38b4b1c9b2ef5206bd25c3fb005576347525d0db0801c99cc73bd1a241fa91f637

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlWXWZ5Pbcq92zMWQ59U4WVqXxqx3hh8:knw9oUUEEDl37jcq4QJlXxmh8

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 248a1bb1387c9c2e620072d5fc754749c26394ffccc820db16471da7f53a8854
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections