General

  • Target

    afd05f4f43f1a3f095f8eddc3e5eadb0d6d2ddc14a683dced453d45a2d7af4e0

  • Size

    1.2MB

  • MD5

    313e170d1aad559ab37724aafb6185cc

  • SHA1

    67d3082716e4824992fb957069ac851a768f9fe3

  • SHA256

    afd05f4f43f1a3f095f8eddc3e5eadb0d6d2ddc14a683dced453d45a2d7af4e0

  • SHA512

    190ec9bf99e45b2ad477e0718caeb7d10c40f2f9b0f6d786e1f7126c7bde788e19c9403e9e9170d90a0bfd309d3fdd2feed686aee130694be985071cab756a9a

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlO9un/belE4S5GdLJnAEgVFMZ:knw9oUUEEDlOW624sIn6q

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • afd05f4f43f1a3f095f8eddc3e5eadb0d6d2ddc14a683dced453d45a2d7af4e0
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections