General

  • Target

    c60ad0b527db2d33f811a57e6ace8b5b38e1b2eb888ed7175a5a91ef6bc0bb1c

  • Size

    1.5MB

  • MD5

    fd4d55b5dc19c230890c7dc47c95c1eb

  • SHA1

    25b4797688d5768eba513858ee89ac7565e811ff

  • SHA256

    c60ad0b527db2d33f811a57e6ace8b5b38e1b2eb888ed7175a5a91ef6bc0bb1c

  • SHA512

    3b63eb8bae20f21b3e4f5f03d2537b1cddb52c5afa5caa9843a534255f8609d997f4d8cdeedf411f7a54ec8b39b13fc8088d88c159b8faffe92717a7597ff443

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlWXWZ5Pbcq92zjP+sjI1XPHdHHYzs+fqLXHl:knw9oUUEEDl37jcq4nPU9Ll

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • c60ad0b527db2d33f811a57e6ace8b5b38e1b2eb888ed7175a5a91ef6bc0bb1c
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections