General

  • Target

    bfc97777f8f11e6863f7d67fcd21f942f6c3cdf865d974ae3fee22190665ef76

  • Size

    1.7MB

  • MD5

    f28f2d364386d7ce3b14072f2d06ceb1

  • SHA1

    9e0b17ce3632cdabd2b252b63e249af9f73d5463

  • SHA256

    bfc97777f8f11e6863f7d67fcd21f942f6c3cdf865d974ae3fee22190665ef76

  • SHA512

    94e99c018a355dfa91f799985ee83821cf23e018dc554c2a405cf0427c08ddab071dbe6f3662a973c09a13a99a78f699c3b93f9956dcff061d006f260f801788

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlOqzJO0RD/J3LipQXAPfKjUJGpiD4ZwV707nqMaOx5:knw9oUUEEDlOuJnR3MxJGO4milbF8Ex

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • bfc97777f8f11e6863f7d67fcd21f942f6c3cdf865d974ae3fee22190665ef76
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections