Overview

overview

10

Static

static

10

c1e5dd1503...49.exe

windows7-x64

10

c1e5dd1503...49.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c1e5dd1503bb2bd023fe1959d6643814c5f1b05c8b9b94be0b16a2f10806e049

  • Size

    1.7MB

  • MD5

    a9540c502e94cfa970770495b5e5bdd0

  • SHA1

    e1732c574f27b35d4932b07262f924afb7beb323

  • SHA256

    c1e5dd1503bb2bd023fe1959d6643814c5f1b05c8b9b94be0b16a2f10806e049

  • SHA512

    e3e554a209359c2e62f02bc027de245dcf789a6d26d0836a49a62ced48fb83f95eee9fd3fd4a852875978f47ff7f3d09bed5cbd75227cf06b88aa0fba767892e

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlWXWZ5PbcmC3f/DFNkTQbOF+sabJKMC+D0QxGswN+E:knw9oUUEEDl37jcmWH/xbnbJo+V3E

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • c1e5dd1503bb2bd023fe1959d6643814c5f1b05c8b9b94be0b16a2f10806e049
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections