Overview

overview

10

Static

static

10

1dc5a536fd...70.exe

windows7-x64

10

1dc5a536fd...70.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1dc5a536fd2bbf619400afdd2f7ffcb662cdb33cd20dd3dce89dde83cb730270

  • Size

    1.9MB

  • MD5

    4f15b7821894a584d10668356ed4e76a

  • SHA1

    077b153dde8ecd727b7881e32ed57b96d3cee214

  • SHA256

    1dc5a536fd2bbf619400afdd2f7ffcb662cdb33cd20dd3dce89dde83cb730270

  • SHA512

    e108621907976946417b1a9eed58fc1463b5040623a4e57ab1ef45770e6a177e4f8464b70e4195c407715d4eb346793e3a5ecdd05b683b6b6a450e19e31e3ac9

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pXHqov9b8pIR:NAB1

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 1dc5a536fd2bbf619400afdd2f7ffcb662cdb33cd20dd3dce89dde83cb730270
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections