General

  • Target

    4e9f9922b2bd2f775ba8a014834500c0N.exe

  • Size

    1.4MB

  • MD5

    4e9f9922b2bd2f775ba8a014834500c0

  • SHA1

    c6bc331a88bdf452681673cbd2d1dc67cce5257c

  • SHA256

    ad332102e27f2e23b4d578ec32f95be3659bfb6f1f35602a1c4a0b9dc58cfb23

  • SHA512

    2fc0ac863eef4671e8f9a7632b91c68bc76fc88876f356d9ee2e414af0a08531c33d08dccc7f47a73f2cb6ab365a97ba36e33f5d2d0ada2315fb370e86e1be6b

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQtjmssdqex1hlrl:ROdWCCi7/raZ5aIwC+Agr6StYr

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 4e9f9922b2bd2f775ba8a014834500c0N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections