General

  • Target

    212f2a3965fc889bf95341cd00c78960N.exe

  • Size

    1.3MB

  • MD5

    212f2a3965fc889bf95341cd00c78960

  • SHA1

    26234a6f5d4466b3f9dc644fbd0f5c7d94850663

  • SHA256

    db64f8e83e6844166fbccb14a4842e4bb68bdf07c0a1b826636b4744ce99f38c

  • SHA512

    87cc608ef5e2d226c70e68efe0d78a056564ce4a7288f3c4c778be0a4441f0b992347281b5371177ff227c6f82e532122466a33175dd46cc968702634dbd25fc

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlGC78XCGiApbVUFVQBo4r+7xmWi9lPIAc:knw9oUUEEDlGUrGiAows74lgn

Score
10/10

Malware Config

Signatures

  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 212f2a3965fc889bf95341cd00c78960N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections