General

  • Target

    d79b3005049e95023af90f947ee931d0_NEAS

  • Size

    544KB

  • MD5

    d79b3005049e95023af90f947ee931d0

  • SHA1

    7c6d9c21a8f43178206a962ec91f44b2bfe0f023

  • SHA256

    36d8e4a22d5eb66724145e7e869f850d21c6327e2f38adac9737e2beea0906c6

  • SHA512

    b2d91c2c754cae5e0b33de4d7bd77fb7da35e3046eb9230f002064a2edf197882c0ee58f8335bc9c940e01a2667ca8431152eda40c2c35b24a6a753911056be8

  • SSDEEP

    12288:ISe8XYl3vWD8xCi7KZoqkatMDqBF6oVTk26GX+2wRke2St:RVIl/WDGCi7/qkatXBF6727ZvU

Score
10/10

Malware Config

Signatures

  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • d79b3005049e95023af90f947ee931d0_NEAS
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections