General

  • Target

    46816c096494a5e816dcadc59966af40N.exe

  • Size

    903KB

  • MD5

    46816c096494a5e816dcadc59966af40

  • SHA1

    3b7bbe01be4c4d563b53ad79576096ea831059ab

  • SHA256

    6ba454b54874ee42df3fc79273f9f283d24d32928ab6cc3253b68c920a3e94cc

  • SHA512

    ac5fd8a6fefdf76acb2789a9b5a49879e8e68eadd8f769a91831357e8bb594a61d13e203edb3268147459ef72cfbec56a1c368772cbc3d004090c0ffe275ce0b

  • SSDEEP

    24576:RVIl/WDGCi7/qkatXBF6727XL1+KICdyyPo+8HQ/fMO:ROdWCCi7/rahHxJ+HCfT

Score
10/10

Malware Config

Signatures

  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 46816c096494a5e816dcadc59966af40N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections