xmrig | 2232d545c226373c00f7fe8809a1ba19369467be6d7f53bfd94e13f4dc7d3fc0

General

Target

2232d545c226373c00f7fe8809a1ba19369467be6d7f53bfd94e13f4dc7d3fc0
Size

3.1MB
MD5

3cfa15f004c13d225d68b81f1ca901d2
SHA1

4e3d3ec823c19ff0d462ad2b930a716432e50af1
SHA256

2232d545c226373c00f7fe8809a1ba19369467be6d7f53bfd94e13f4dc7d3fc0
SHA512

a66a9cb8eef49d25fb9640bf258475af2cebab2ebb260164b91e147255e20ad23aa97c1b62fbc2a1f8bb7d2f466ffda01b8e80d83324cb2461e2d329c0c72e6f
SSDEEP

98304:71ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrWV:7bBeSFkp

Score

10^/10

Detects executables containing URLs to raw contents of a Github gist 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICIOUS_EXE_RawGitHub_URL

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
sample	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2232d545c226373c00f7fe8809a1ba19369467be6d7f53bfd94e13f4dc7d3fc0