General

  • Target

    385702aec8b0b53bbaf5b437ca8fab50_NEAS

  • Size

    1.5MB

  • MD5

    385702aec8b0b53bbaf5b437ca8fab50

  • SHA1

    729e63aff0040fc81fcc47fcee24f4f5f7ce7e55

  • SHA256

    6da086d9c23e3b37fe2f52141bafda66cedbb773066f3a6baa5d2d6e70f8d4cc

  • SHA512

    3f81de17e2ba8c78472c6fd7fa7f58e330a20207a224a791e0282cbcb1192e4fbb1c163c631015563c5aeb313ee05ba4717115b53cb498be5e8868253b2a5ecd

  • SSDEEP

    24576:RVIl/WDGCi7/qkatXBF6727f8UhNnXIhz24GtdhUYpAal4jZnwMWmzyh5sj7A21l:ROdWCCi7/rahUUvXjVTXptRmKWXcCj

Score
10/10

Malware Config

Signatures

  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 385702aec8b0b53bbaf5b437ca8fab50_NEAS
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections