Overview

overview

10

Static

static

10

f8e41ce9f6...0b.exe

windows7-x64

10

f8e41ce9f6...0b.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f8e41ce9f689b0a67cb1c6a107fee48bdc4040655fb823a9b1982bb9ca7f840b

  • Size

    1.7MB

  • MD5

    e189f43b84b24ec9dd26f0bf4059707b

  • SHA1

    21efe09195f2531b2d396953e11e9a934af7c84e

  • SHA256

    f8e41ce9f689b0a67cb1c6a107fee48bdc4040655fb823a9b1982bb9ca7f840b

  • SHA512

    81b4ce4c6ef095c3d1b5dafc625c2c86dd5bdaa5e400c0c3215c7a5c0e9b0bb728585041d48af3060a1258a204d44a66861a5255d9b62a83e44661460211604b

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PxtG8PEpklLvYl8UywjwCIlaa+F551HfyeoxiBrSOxIg:Lz071uv4BPjGhql0lQGQK5BKr8

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • f8e41ce9f689b0a67cb1c6a107fee48bdc4040655fb823a9b1982bb9ca7f840b
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections