General

  • Target

    bfbef46125039cfd210475a03857482483c6bac0b90b16c35b5c7aecd7568b14

  • Size

    1.1MB

  • MD5

    f17136befd2cabf36534064c2b44c445

  • SHA1

    e781e5abc2d6d3b3f746090f25206a51733c8310

  • SHA256

    bfbef46125039cfd210475a03857482483c6bac0b90b16c35b5c7aecd7568b14

  • SHA512

    f95df6119fa92057c2e8daeb61e98b1e958b212bbfcff02ee4aa892fa381c525bc5274cece7b44e3b55014362dbe8551bb59002b063cfd8d91135c132ac11d7d

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlia+zzDwD/YCgU+Lqq6a9xyCyt0RCciNHV2m75:knw9oUUEEDlnDwq6Sd0R7qV2y

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • bfbef46125039cfd210475a03857482483c6bac0b90b16c35b5c7aecd7568b14
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections