General

  • Target

    demoapp-test11.zip

  • Size

    2.6MB

  • MD5

    92324fecbadf408298e66560bdb94ab4

  • SHA1

    7488137e84013c94b6e204f5300dfdd01fca70d2

  • SHA256

    6e2a088ed5acc03b8482580aed041366d82ca358b899f167d07e2d7e6c94685c

  • SHA512

    0429350b86b4cba5b03a07b9b52c9f0035b270b6826a0f27cae6e6d1a5bda9b9fe4c90a1f9b0b4834b36a3e28cf8981d0f32db5b35124399cac67b7cb5ab38f5

  • SSDEEP

    49152:/C/efKtVdB1jjJy/q+bs4hgh3ElDpXQWNJdi7qLOgth8XlbuJ8cSYP:DKdFy/qtlh3mRpNJddSEcNcSYP

Score
10/10

Malware Config

Signatures

  • XMRig Miner payload 2 IoCs
  • Xmrig family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • demoapp-test11.zip
    .zip
  • demoapp-test11/SHA256SUMS
  • demoapp-test11/WinRing0x64.sys
    .sys windows:6 windows x64 arch:x64

    d41fa95d4642dc981f10de36f4dc8cd7


    Code Sign

    Headers

    Imports

    Sections

  • demoapp-test11/benchmark_10M.cmd
  • demoapp-test11/benchmark_1M.cmd
  • demoapp-test11/config.json
  • demoapp-test11/pool_mine_example.cmd
  • demoapp-test11/rtm_ghostrider_example.cmd
  • demoapp-test11/solo_mine_example.cmd
  • demoapp-test11/start.cmd
  • demoapp-test11/xmrig.exe
    .exe windows:6 windows x64 arch:x64

    12806e48b853545b536463546db4baa1


    Headers

    Imports

    Sections