Overview

overview

10

Static

static

10

4eb20318c6...86.exe

windows7-x64

10

4eb20318c6...86.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4eb20318c634ae504d9e9045b570081bc2bc48bfeed7a612381beafa13464686

  • Size

    2.3MB

  • MD5

    5c8e40a2b750aa749a28639aa5c3d029

  • SHA1

    a4281d7f3a44cd508b05b37b5535badf09e76c32

  • SHA256

    4eb20318c634ae504d9e9045b570081bc2bc48bfeed7a612381beafa13464686

  • SHA512

    5b598e90d6cb7d4af1c784f46b4087500c85639a8cd303bd867b5a1727ab7b5bbc2ce0f6cd4fab889c860f12a13fa461511f4bdda34be565a66fbf4616d39e82

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKWnq0vljmTbX:BemTLkNdfE0pZrwS

Score
10/10
minerupxkpotxmrig

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
    kpot
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4eb20318c634ae504d9e9045b570081bc2bc48bfeed7a612381beafa13464686
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections