Overview

overview

10

Static

static

10

DFIR.exe

windows7-x64

10

DFIR.exe

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    DFIR.pdf

  • Size

    9.8MB

  • MD5

    fd8d4e6fc696f111119fd0bdb615005e

  • SHA1

    2cee425a78c2c30db1db92ecab39a91afe1e0321

  • SHA256

    9ce775734b47d214e97b659997419b6f08ed83988d3f6e853b8ee2f0306a0a4c

  • SHA512

    91eed4cae6a2c14dbb70bf6e026d7789b534557e3141a7f6698f406fc0dde8be5235799fdc7618c630ae6c1cf84d8042ed0579ccb6fb969789df7a88eb245fe9

  • SSDEEP

    98304:t5i+bn565ESeSgza8U1S9UpjXOfEQ502MSQeVlIonoOvv7NpF8K:t5/bnA5neSgzXU8+E50moOvv7Nr8K

Score
10/10
minerxmrig

Malware Config

Signatures

  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • DFIR.pdf
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections