Overview

overview

10

Static

static

10

f170d19a53...fb.exe

windows7-x64

10

f170d19a53...fb.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f170d19a5303e341881b6c88f7e98da1fa4c074928582865bfaa414d1214bffb

  • Size

    3.3MB

  • MD5

    105a3077d76da032e3ad487b3b8954c6

  • SHA1

    c830d71ed5dfc52fba56e7751ab04a33bdeb2bfc

  • SHA256

    f170d19a5303e341881b6c88f7e98da1fa4c074928582865bfaa414d1214bffb

  • SHA512

    6ecdcf64bba592d8f4f64a9bf9f2989035f09c10fb298d164bd0c5c48e54ec9e89edb8103a480a8d7b9676a5da99550972a2dd637a9ee8acbb5727f45fe9dbe3

  • SSDEEP

    98304:N0GnJMOWPClFdx6e0EALKWVTffZiPAcRq6jHjc40O:NFWPClFkO

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f170d19a5303e341881b6c88f7e98da1fa4c074928582865bfaa414d1214bffb
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections