General

  • Target

    b15fae3c3e8ab10a434c51ad82ea73ae9c62ff4db9dc816492dcc3d154de02d6

  • Size

    2.1MB

  • MD5

    255c0c5bf971d11cc5c7fd58da1086b4

  • SHA1

    041205496c6466bddafe5cd1af85636bec54e35e

  • SHA256

    b15fae3c3e8ab10a434c51ad82ea73ae9c62ff4db9dc816492dcc3d154de02d6

  • SHA512

    a740cf13548d4450575b1e031cd8a9275a3c7e57367cdc15627851031823aa9cc50faf7b9920429696cff3f6ace526cea810489f53909689d4af6afb03436848

  • SSDEEP

    49152:oezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNasrVg:oemTLkNdfE0pZrwX

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • UPX dump on OEP (original entry point) 1 IoCs
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b15fae3c3e8ab10a434c51ad82ea73ae9c62ff4db9dc816492dcc3d154de02d6
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections