General
-
Target
49173fd9fb98c499ae6c208e014d94af24f99b5a5b9415c0645e9d072175f2cd
-
Size
2.7MB
-
MD5
3773bb9772315fff02dd9c3f69a1de12
-
SHA1
70cb29059f0079e556305d3be582e9170fdc20ee
-
SHA256
49173fd9fb98c499ae6c208e014d94af24f99b5a5b9415c0645e9d072175f2cd
-
SHA512
bb25371a33787e21cd49af2f52f44dca27a4bbde263d104ca3ac01b0f5ea9fd71c18b54ab60eb07100f3604d45d914f8b25e39492b65e673ce8a9e0b8ee42141
-
SSDEEP
49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkHC0IEFToy+:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2RN
Score
10/10
Malware Config
Signatures
-
Detects executables containing URLs to raw contents of a Github gist 1 IoCs
-
UPX dump on OEP (original entry point) 1 IoCs
-
XMRig Miner payload 1 IoCs
-
Xmrig family
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
49173fd9fb98c499ae6c208e014d94af24f99b5a5b9415c0645e9d072175f2cd
Headers
Sections