Overview

overview

10

Static

static

10

6c8cd3f15b...14.exe

windows7-x64

10

6c8cd3f15b...14.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    6c8cd3f15b2ba12f4fa1c4c73090a10074cbaa7abd2afd28b393d9d982659814

  • Size

    2.7MB

  • MD5

    b4f10108b9069d06c635e35089941c60

  • SHA1

    fb1bdb40ad41efab5d5e4bf19720a7758f9d93d1

  • SHA256

    6c8cd3f15b2ba12f4fa1c4c73090a10074cbaa7abd2afd28b393d9d982659814

  • SHA512

    ed116d83d6b402349c1ddb942b6aaa004ee91a2458e4d958b96d9e21388ad1cae8d1effc36f03b3d95310ec07a83d99a89d4d73eb698bbdf5a2afdf4b1a7a199

  • SSDEEP

    49152:71G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkHC0IlnASEx/mCJ:71ONtyBeSFkXV1etEKLlWUTOfeiRA2Ru

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6c8cd3f15b2ba12f4fa1c4c73090a10074cbaa7abd2afd28b393d9d982659814
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections