General
-
Target
c3e6ee16cc685c80b4810e2959bf3a2b0c9f9dd5d508c7e5d1ae40a7b0900525
-
Size
2.1MB
-
MD5
bd8ca4ce774f01e8be3b4096208048ab
-
SHA1
81e72352f38ce316d024d789f3a97f357b3292af
-
SHA256
c3e6ee16cc685c80b4810e2959bf3a2b0c9f9dd5d508c7e5d1ae40a7b0900525
-
SHA512
9689057e9d9090ec9f9843c1626821f3ec7ee0f893e76f6fc31ed2f015ae94a3c92707da4f68221e527bdda3e51c76230a78d05cc1302fb8ce65aeb7cf70692a
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1Vr5s1PTKUAN:NABY
Score
10/10
Malware Config
Signatures
-
Detects executables containing URLs to raw contents of a Github gist 1 IoCs
-
UPX dump on OEP (original entry point) 1 IoCs
-
XMRig Miner payload 1 IoCs
-
Xmrig family
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
c3e6ee16cc685c80b4810e2959bf3a2b0c9f9dd5d508c7e5d1ae40a7b0900525
Headers
Sections
-
out.upx
Headers
Sections