Overview

overview

10

Static

static

10

303f2e5592...a9.exe

windows7-x64

10

303f2e5592...a9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    303f2e5592d5e0013238f068a5a4faf9c9c9803ceabfcefc810540bc03b3bda9

  • Size

    1.2MB

  • MD5

    ec3115a1c3e8ab019f2ed790144227ec

  • SHA1

    b4b1c91f68fd6047c9ae400b8d7e22cc2e389dd9

  • SHA256

    303f2e5592d5e0013238f068a5a4faf9c9c9803ceabfcefc810540bc03b3bda9

  • SHA512

    ca2438acf3f713bede52907a9faa784fdd27c4a60aece0c0481e96845fbd520d1ef9b9e2e51317efc69a8e327ac2b14e893d19a9d4250f567ad76465ab79525b

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlia+zzDwD/YCgU+Lqq6a9xyCyt0RCciNHV2m/VwUd:knw9oUUEEDlnDwq6Sd0R7qV2mVH

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 303f2e5592d5e0013238f068a5a4faf9c9c9803ceabfcefc810540bc03b3bda9
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections