General

  • Target

    39722af6681782d3b2b7ead56f6cb520N.exe

  • Size

    1.4MB

  • MD5

    39722af6681782d3b2b7ead56f6cb520

  • SHA1

    9686a084058057eef491d2e8b8498f808ac14c8d

  • SHA256

    73863c9e521ad1243cdf6cd3d82704addf3fe45632c35d1e04e08aa905f895e8

  • SHA512

    7963453da158bc29ca4c667b5fddd63fc5624c1de6b7c60a0e1251c53633c3cd369d505eac2c9d0d4b1e68acffecb623acbf3c8f0618eedb6c42fe19e62cc213

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQtjmssdqex1hlrPdk:ROdWCCi7/raZ5aIwC+Agr6StYRa

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 39722af6681782d3b2b7ead56f6cb520N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections