xmrig | ec889e35cac586d0a71548d7e5d94a231bb4c809247a6c5632ad65f0e4034af3

General

Target

ec889e35cac586d0a71548d7e5d94a231bb4c809247a6c5632ad65f0e4034af3
Size

2.8MB
MD5

0ac1f342343f7663727a79c9a2944a4b
SHA1

509a725ebc8dab69957ea7e7aa6bb976bcb1511e
SHA256

ec889e35cac586d0a71548d7e5d94a231bb4c809247a6c5632ad65f0e4034af3
SHA512

f9290daef62c8e74f547f8ab6d73557346d58b26795411b8369e62071498ed1a7ea5dd5b1a301f1fd4026a44bd25a8b0e409b4545a416b07b2fb67c2ed1777cd
SSDEEP

49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hjGhql0lQGQBC3lT:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2Rv

Score

10^/10

Detects executables containing URLs to raw contents of a Github gist 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICIOUS_EXE_RawGitHub_URL

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
sample	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ec889e35cac586d0a71548d7e5d94a231bb4c809247a6c5632ad65f0e4034af3