General

  • Target

    66e0da5870fb894dc9c0f3c5b6b83cd9a178ce99a894527984641fc45e38145a

  • Size

    1.7MB

  • MD5

    d0f2b8d511caa80d547a55aa3a025540

  • SHA1

    c4b7039f48cd99fea5dd7720d651481a560e5ffe

  • SHA256

    66e0da5870fb894dc9c0f3c5b6b83cd9a178ce99a894527984641fc45e38145a

  • SHA512

    c465cb319dc7ca98e040e23f8b9345c97546a48ac3c826c97a46df2899ab449853bd18e041c1ef0141541f5027fdc7473dbbfe4ae2a8119f7d347f1eed1b3b2f

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlGC78XCGiMQy0AVu8L9gQqXxLy1Iycx1SaTbuqFJ2U:knw9oUUEEDlGUrGiMt32BnFcmVL

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 66e0da5870fb894dc9c0f3c5b6b83cd9a178ce99a894527984641fc45e38145a
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections