General

  • Target

    94e202ca4a2455474ab3853873bfd1b0N.exe

  • Size

    1.5MB

  • MD5

    94e202ca4a2455474ab3853873bfd1b0

  • SHA1

    6422689f5e7d060179f0d6c61caac2d6032d00ae

  • SHA256

    845395c09f511a4a23b4f44c917f3c3d6b4fdb93024404c22307e4b62c6b5748

  • SHA512

    878df56342e4010f6c936350625777fa5c674293b177c6673a2698528b48aa0acfe76cd5b20202a32c93e565e3d26453b7589708cd861b9eb442e8f89ff7647a

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6StVEnmcKxYKo:RWWBibyT

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 94e202ca4a2455474ab3853873bfd1b0N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections