General

  • Target

    25bc94c045be9b5ceeba587567dca0c3a41625a0cd5cfbe5677ca7f7a66aba6a

  • Size

    1.4MB

  • MD5

    fc128095d5bb0b4be0d0cb8a3a2f04be

  • SHA1

    2d2286c17087d539b4a03fe1271bec26f8921697

  • SHA256

    25bc94c045be9b5ceeba587567dca0c3a41625a0cd5cfbe5677ca7f7a66aba6a

  • SHA512

    3df5cde5abba05ff294e5127b8c8a3f578c4060fbb53ee93197783f597bc8b4a0b81dba807449dc8279e0f22ab6f85b4b2b2c03a17c382b12c56648becc39373

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlWXWZ5PbcmC3f/8lkKJhlsr3Pz00cCZmdWeF:knw9oUUEEDl37jcmWH8SKJhS3Y

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 25bc94c045be9b5ceeba587567dca0c3a41625a0cd5cfbe5677ca7f7a66aba6a
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections