xmrig | a7cd843b207e751b28052e9f201c7e8ccdf137426efca442b34f1e6f629ff8b6

General

Target

a7cd843b207e751b28052e9f201c7e8ccdf137426efca442b34f1e6f629ff8b6
Size

2.9MB
MD5

7a14a72e730b2335955e5f59d365f0a9
SHA1

afa092e3228e847184e74767e095404b335c848f
SHA256

a7cd843b207e751b28052e9f201c7e8ccdf137426efca442b34f1e6f629ff8b6
SHA512

f2889336d19f8037025a66e31fb3e4fa067d380800a0f5277cfdf92db2eb954dc975796698685ef212c7280e73bf1bd554276384c17c2d76046783574b508b3d
SSDEEP

49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkyW10/w16BvZXBX:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2RL

Score

10^/10

Detects executables containing URLs to raw contents of a Github gist 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICIOUS_EXE_RawGitHub_URL

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
sample	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7cd843b207e751b28052e9f201c7e8ccdf137426efca442b34f1e6f629ff8b6