General

  • Target

    087936e774c9f06fd3e9345ec421951d0f32d80c7d6916a4d7272661cb48f98c

  • Size

    1.2MB

  • MD5

    4677b8bedcac1ef598ce23f499ff97d5

  • SHA1

    5ca4e37bb98123ac3ed6f1c2c4e69c134ce078c3

  • SHA256

    087936e774c9f06fd3e9345ec421951d0f32d80c7d6916a4d7272661cb48f98c

  • SHA512

    345b89e5e85bb3e89f7b1fd23d2d6e0a3c0d04381731258c3e6fd650288e5f01f4a1a4cb20372b0efae1d94198e3b8268b5f51d1a4bbe4f2948d68f9e9a9bdc9

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlWXWZ5PbcmC3f/DFNkTF8t81k5nqx:knw9oUUEEDl37jcmWH/Apx

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 087936e774c9f06fd3e9345ec421951d0f32d80c7d6916a4d7272661cb48f98c
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections