Overview

overview

10

Static

static

10

f647b1f7c1...5b.exe

windows7-x64

10

f647b1f7c1...5b.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f647b1f7c17cb3a2f9392e1ec3e0d1a54e033e6bec790e6dfbac09d498d5bc5b

  • Size

    2.9MB

  • MD5

    4878a9f9fcd83448a843a4677251e52a

  • SHA1

    2d48596129cc88e9a14e983fbb28612b0ab71b49

  • SHA256

    f647b1f7c17cb3a2f9392e1ec3e0d1a54e033e6bec790e6dfbac09d498d5bc5b

  • SHA512

    9ca0c74d51b543dd339f6d85e38cfecbf8c4ba58fae00411da209dec81a958f25aee799784c5dece1bcf1849cac1cc228ceeb6eec2a1ce0b82e974b3853c76a0

  • SSDEEP

    49152:71G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkHC0IlnASEx/RiK:71ONtyBeSFkXV1etEKLlWUTOfeiRA2RY

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f647b1f7c17cb3a2f9392e1ec3e0d1a54e033e6bec790e6dfbac09d498d5bc5b
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections