Overview

overview

10

Static

static

10

ca19510009...fb.exe

windows7-x64

10

ca19510009...fb.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    ca19510009320cbae24721f85489178f97339fa6801d3dfa92495a117ac897fb

  • Size

    1.5MB

  • MD5

    5ea5b47d66cbd667991a6603429dd00d

  • SHA1

    6f2bb66b6f305bba814338b3fda64128f87a9603

  • SHA256

    ca19510009320cbae24721f85489178f97339fa6801d3dfa92495a117ac897fb

  • SHA512

    ea1d5af7b08cf805096a4234e40f89590d4e7e78945a334d96cd14837bf7e5f6c6f3f56cd2086f8bc44feb9e3fead7a83ba45da3e9f9398c2f2f4705e4e20f18

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlia+zzDwGpmbqD0CkG0L2tQZgGV0Bm2Ykt+Vm:knw9oUUEEDlnJ2k2oj6tPtCm

Score
10/10
upxminerxmrig

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • ca19510009320cbae24721f85489178f97339fa6801d3dfa92495a117ac897fb
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections