Overview

overview

10

Static

static

10

b6c7091a8b...b9.exe

windows7-x64

10

b6c7091a8b...b9.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b6c7091a8b873955a71080b03a53468cb5939081f895409df125c129fad353b9

  • Size

    1.5MB

  • MD5

    7d58c9de93d06bd22793fce145f0feef

  • SHA1

    d8ca1ff5f1c5c21e0ec291cea441d32f5c3590d0

  • SHA256

    b6c7091a8b873955a71080b03a53468cb5939081f895409df125c129fad353b9

  • SHA512

    9942de77d77a9dbfa44f969068febee70cbb79837bfce8c3a33ee1a21d54d4177d2d87c2bc9a239b31786167d41973c2df67128cc0f667c99f9279f07927a65f

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkUCCWvLEvjuJoz5XdUK6S1uBkJMtQbLc:Lz071uv4BPMkHC0I6Gz3N1pIcc

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • b6c7091a8b873955a71080b03a53468cb5939081f895409df125c129fad353b9
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections