Overview

overview

10

Static

static

10

5787e5ed17...64.exe

windows7-x64

10

5787e5ed17...64.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    5787e5ed177691ddadfe2386c88f2c4fce786ab3b74a4e4c5b47b82282967c64

  • Size

    1.6MB

  • MD5

    2d7b2656cea9d8cd6fd3277321458985

  • SHA1

    c60d808ed5e116514eb0b6937991a917b6c68bea

  • SHA256

    5787e5ed177691ddadfe2386c88f2c4fce786ab3b74a4e4c5b47b82282967c64

  • SHA512

    e9e7748af2129af3398df95966e869d4ec0e96fdca84bedd0775d7eba21e54fbac580e7ad79d4a6ab6c80d7e41f30692f2fdb45634dfdcaa89d77efbc2e5cfa4

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PmK/lzapbxikE5EkJyQfedz4Gc41aYlKbsZxsEoMf:Lz071uv4BPm6lg6EW7EzxsEow

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 5787e5ed177691ddadfe2386c88f2c4fce786ab3b74a4e4c5b47b82282967c64
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections