Overview

overview

10

Static

static

10

1f94d0b482...40.exe

windows7-x64

10

1f94d0b482...40.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f94d0b4822a0419ae7a8ade3a9658b27106868ae8333521cefbb92542f08240

  • Size

    1.7MB

  • MD5

    ce3e3bb7dff1292b78b6a3a8d8e1f6c3

  • SHA1

    a49a2a2f9a7e5fac169877e1d200085e856c12bb

  • SHA256

    1f94d0b4822a0419ae7a8ade3a9658b27106868ae8333521cefbb92542f08240

  • SHA512

    56e74dfdf02150156a1e33e91c63d84bdd82e81e9ab2ac74996b3f9d72169a15a4e66cd516b9a9776c8490c98c5c92594523fe674cf77662817c425dccfe5016

  • SSDEEP

    49152:Lz071uv4BPMkivwSbaMYPcyO8GYE4yAwpw:NABP

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 1f94d0b4822a0419ae7a8ade3a9658b27106868ae8333521cefbb92542f08240
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections