General

  • Target

    69f052e947c8e67b50756eb7dbc75ca86990179c252ca406d95a4c33360ffaa9

  • Size

    3.2MB

  • MD5

    1670cc8f24fd362fff581f9282e92053

  • SHA1

    3bc38d6ebe4b99cd5a5bb03bcbea2666eb7d48a4

  • SHA256

    69f052e947c8e67b50756eb7dbc75ca86990179c252ca406d95a4c33360ffaa9

  • SHA512

    97426448a96896332dbdb6a53c280436ea596fd9c70c20091e7f202a35449e61d78fd5265fa440dae59094e00f77a9f2a8b17cf662307f3d817757bcf324c9b0

  • SSDEEP

    98304:71ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrWD:7bBeSFkP

Score
10/10

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 69f052e947c8e67b50756eb7dbc75ca86990179c252ca406d95a4c33360ffaa9
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections