General

  • Target

    c8ac0644c1614dd6031130027b1bd5e0N.exe

  • Size

    1.5MB

  • MD5

    c8ac0644c1614dd6031130027b1bd5e0

  • SHA1

    10fa7dedabcb029cc26b4f4c179cd2e687ec0981

  • SHA256

    6250bd34824765c029bc4be250d2977ef1c7ccbcc68ea1cd5dfffa5df447fdba

  • SHA512

    ece8ea5bcb9fd2208429821e1baaf9e40c39fa3c171e568aa8dce25dfd7a07057de882e90130ee4644d7890b9c641c474e14a038cd9290f15f4be871ce409c21

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6StVEnmcKxYKc:RWWBibyL

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • c8ac0644c1614dd6031130027b1bd5e0N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections