Overview

overview

10

Static

static

10

4200b1178e...ed.exe

windows7-x64

10

4200b1178e...ed.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4200b1178e39a3332de38bb95e6189c4a48a146e3a7257fbde4a4767d0fda7ed

  • Size

    2.8MB

  • MD5

    777bfba44977bebe283ed39a5c1cdda5

  • SHA1

    29241c87e55201955a53e5d9f0de610c83f0e4f0

  • SHA256

    4200b1178e39a3332de38bb95e6189c4a48a146e3a7257fbde4a4767d0fda7ed

  • SHA512

    4bec91ea56c405ef998ddfd3b66a014fbaa78afb11945b0806066331a087d425dba90c76cfbc6277a3fa70c4f40dab729e151e5ee8918b23c97e9746f5964fcf

  • SSDEEP

    49152:w0wjnJMOWh50kC1/dVFdx6e0EALKWVTffZiPAcRq6jHjcz8DzHUrM5CnBnoYDBy:w0GnJMOWPClFdx6e0EALKWVTffZiPAcR

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4200b1178e39a3332de38bb95e6189c4a48a146e3a7257fbde4a4767d0fda7ed
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections