General

  • Target

    03b653fb1ca48160fa48e089834c1d30N.exe

  • Size

    1.4MB

  • MD5

    03b653fb1ca48160fa48e089834c1d30

  • SHA1

    7bc6756df2eaa9235c8c5b12c9b0ec78d4763852

  • SHA256

    4513d340cac2f626669654f6c8e3a3b2ec8c8a085886d888fcc9fb754299776a

  • SHA512

    999105c613e43297438aa20dfc7072f8175f16190d9bc18377e002d7eecd50f831176ba53e0bf5a792f343527c73ac799cb2a02c2d3d94f5c54a8936711554d4

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQtjmssdqex1hlrt:ROdWCCi7/raZ5aIwC+Agr6StYD

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 03b653fb1ca48160fa48e089834c1d30N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections