Overview

overview

10

Static

static

10

35e40e0fbf...69.exe

windows7-x64

10

35e40e0fbf...69.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    35e40e0fbfa98e528d3e38cfb93d453f8cbe6162673edf080b614e2445581b69

  • Size

    1.6MB

  • MD5

    5b64a83b42f6dadc385008044e323b02

  • SHA1

    d430241717140f67b0d93cbeb7e38efd6ff5dc5f

  • SHA256

    35e40e0fbfa98e528d3e38cfb93d453f8cbe6162673edf080b614e2445581b69

  • SHA512

    1b93974167b3a4c04b5420c7d7d2d6d34294c9386e06d451ddf4dc0abeee99c8f67707ecb844b5770c8736a7a559f2f3836fbe79deafaafb3574dc413f18721e

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkUCCWvLEvj7NaVNqd9OeSZXCdzvd4/iooIXsLq9UaE:Lz071uv4BPMkHC0IaSEzQR4iRLUUaat

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 35e40e0fbfa98e528d3e38cfb93d453f8cbe6162673edf080b614e2445581b69
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections