Overview

overview

10

Static

static

10

virussign....30.exe

windows7-x64

10

virussign....30.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    virussign.com_006756a4d404a720674fcde7ffa16f30.vir

  • Size

    1.9MB

  • MD5

    006756a4d404a720674fcde7ffa16f30

  • SHA1

    0940f6aaf49230a6de25556ef96f44b2cd2e43ca

  • SHA256

    38c8e4b5ca6713471bd7262e2ef68218982aa829a6c3940aa1b696438532cadf

  • SHA512

    4dedb071ba40086059a1f5656e26e5510a50af02cf48248af0b66441c1978f2dc48554f6e5aa8f37104fb1628fef3943f871949521e202a70c36d752fd7dd7c2

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEn0ksA:BemTLkNdfE0pZrwP

Score
10/10
minerupxkpotxmrig

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
    kpot
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • virussign.com_006756a4d404a720674fcde7ffa16f30.vir
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections