General

  • Target

    6b50e5db9009a9368141002db51386465532096c8bd20c1bc731f2ebae34f63f

  • Size

    1.5MB

  • MD5

    49b8d2f1be713a5157a5efe4a0047f21

  • SHA1

    f3923c1de7ee59a98ea2286de31788c3fb29279a

  • SHA256

    6b50e5db9009a9368141002db51386465532096c8bd20c1bc731f2ebae34f63f

  • SHA512

    85724613f1013021641a13d755790024c943d2629b1d81d26cd2dd2ee067fd2cfcde2e77733fff0b39d741c2423fe5221f17a865ca9218a547c552526e1bb087

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkUCCWvLEvjhnXwx8/2Pbx/mbjba0DF4bw7Or6uji:Lz071uv4BPMkHC0IlnASEx/wfU6r

Score
10/10

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 6b50e5db9009a9368141002db51386465532096c8bd20c1bc731f2ebae34f63f
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.