Overview

overview

10

Static

static

10

40884fa62f...bf.exe

windows7-x64

10

40884fa62f...bf.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    40884fa62fdcb3f5cacdf705d2be8cc991d6c4c211ea67dd2cbdfd40fa36ccbf

  • Size

    2.8MB

  • MD5

    115709e9ca970bb76cf3fccceff4de15

  • SHA1

    d6798f1b3bf6cf0f0b71cd08e4bea9e3d0feef68

  • SHA256

    40884fa62fdcb3f5cacdf705d2be8cc991d6c4c211ea67dd2cbdfd40fa36ccbf

  • SHA512

    5cd93a01993d87d6882a8c64015dd0e9cbad2dcd78a3c6cad2af135b1ba8aa7e9c54d1b3f89c7bb8e7d9b1fc290b45b83e401e004da5d8ba5b9362808c5437d5

  • SSDEEP

    49152:N0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8DzHUh+hNkWt6Dn:N0GnJMOWPClFdx6e0EALKWVTffZiPAcu

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 40884fa62fdcb3f5cacdf705d2be8cc991d6c4c211ea67dd2cbdfd40fa36ccbf
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections