Overview

overview

10

Static

static

10

9a173ff88f...a9.exe

windows7-x64

10

9a173ff88f...a9.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    9a173ff88f6fd9e086031de384865370857237fb65d73d450959a780f672d8a9

  • Size

    3.0MB

  • MD5

    1a7fc447a9d434fb5a435b886aa4c003

  • SHA1

    1a204ddc9f24509a9800f0cabfa51edf04ab2ded

  • SHA256

    9a173ff88f6fd9e086031de384865370857237fb65d73d450959a780f672d8a9

  • SHA512

    4e4e223f6ae523a2474839e53a124ed6aa534cc2fba2876fe58ecb5c4c1d3a95adc3cfdd6cdacc5ae38d2cd32516475f383faa9b02c12768de946a0c7d1dfcb4

  • SSDEEP

    49152:71G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkFfdg6NsOass:71ONtyBeSFkXV1etEKLlWUTOfeiRA2RL

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9a173ff88f6fd9e086031de384865370857237fb65d73d450959a780f672d8a9
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections