Overview

overview

10

Static

static

10

30557a17bf...b8.exe

windows7-x64

10

30557a17bf...b8.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    30557a17bffda4335c712d767f2b057c01cd73b2c7a6f3661681fab159292bb8

  • Size

    2.6MB

  • MD5

    92dbf8e175d564015c3d3a767c1530bd

  • SHA1

    57f8c743a4486a43cdc8c4e4d022b0316f584830

  • SHA256

    30557a17bffda4335c712d767f2b057c01cd73b2c7a6f3661681fab159292bb8

  • SHA512

    d2ee1eb9761ff13ee90bb1db1eb29e35bb3d3c2c95e37c33f7368cca9d4318dc71f91b8021d74dcf3a6e35e35635969b0e7a5eca76cb89274eab7a15298160ba

  • SSDEEP

    49152:w0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8Dze7jcmWH/Ap0rckC:w0GnJMOWPClFdx6e0EALKWVTffZiPAca

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 30557a17bffda4335c712d767f2b057c01cd73b2c7a6f3661681fab159292bb8
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections