General

  • Target

    c0e9e6bb4f0497afdfbca875159258653b5c366ee9152d0a79d95c7c1d9674f2

  • Size

    1.4MB

  • MD5

    bc86228b73bef6d6f3fd90b5f4681ab9

  • SHA1

    0376fdbabdca82b92585ca76169c2f3ee26725aa

  • SHA256

    c0e9e6bb4f0497afdfbca875159258653b5c366ee9152d0a79d95c7c1d9674f2

  • SHA512

    4cf0e81621bf091f560d302c3493c4f4c3e5ee66f2dd91a3bac20e0ad5f04cb684fe75b0b067afd709104435708fc59d44c383aae3c153e99a3a6bdf2211ef88

  • SSDEEP

    24576:RVIl/WDGCi7/qkatXBF6727XL1+KICdyyPo++UIUFlBaNC2L1SqMlRPP9tZi:ROdWCCi7/rahHxJTFlt2wqgBlK

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • c0e9e6bb4f0497afdfbca875159258653b5c366ee9152d0a79d95c7c1d9674f2
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections