General

  • Target

    e5381512e29e99d0db3386b33c2ef5991b9ddbc5fb1fa5fcc5ca27b154a6130b

  • Size

    1.5MB

  • MD5

    3a7df61fc9c7ef82a37a65912169f554

  • SHA1

    4bdb6483afcad52c9914423552091e6637a931b8

  • SHA256

    e5381512e29e99d0db3386b33c2ef5991b9ddbc5fb1fa5fcc5ca27b154a6130b

  • SHA512

    4f0a5a37d13cc65d644fb37cbbe4cad613c990f2f330f156034c4ce93e44db116198f1c849d19ee94e620f775b380d7f63c96781447572a6361069766ba86e59

  • SSDEEP

    24576:RVIl/WDGCi7/qkatXBF6727P/Q50xJiYYIFddXpa2q0sQyn8PE/DiTMHceHr3Sqc:ROdWCCi7/rahw5UPeNliw8s/E/GY7

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • e5381512e29e99d0db3386b33c2ef5991b9ddbc5fb1fa5fcc5ca27b154a6130b
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections