General

  • Target

    a02be0fe2b6c1d67b217e42591b1ebcaca522550421551d73d40cdaf50341d9c

  • Size

    2.7MB

  • MD5

    3195929cde58b8b85b7b0ff6ce6eb786

  • SHA1

    210da2a8b43f01d387b8c09102df49e4e2f25798

  • SHA256

    a02be0fe2b6c1d67b217e42591b1ebcaca522550421551d73d40cdaf50341d9c

  • SHA512

    7a9c93b81c2f55f126f898523e85fa9e5de008e83bbfb67dce9d2302dcdfb87b4c0039913a9896733cb8dd14b04c1e289b00442b0241e5533364dcbf25e14a63

  • SSDEEP

    49152:71G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkFfdk2aX:71ONtyBeSFkXV1etEKLlWUTOfeiRA2RT

Score
10/10

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a02be0fe2b6c1d67b217e42591b1ebcaca522550421551d73d40cdaf50341d9c
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections