General

  • Target

    ac4dcd61b3feeb9c6e201cbf57bf0cc0N.exe

  • Size

    1.7MB

  • MD5

    ac4dcd61b3feeb9c6e201cbf57bf0cc0

  • SHA1

    2efcd2db1fc96f3aeff6e13eafd33a1ff2a741f2

  • SHA256

    5a39b91b3805dbfcfa9d95f0b31fd12b313146730d5e8183370bb3d11768233b

  • SHA512

    89b63d219fb4c4814fa01a1fd48c0c9d82fe8b1ae4c6010488127f3195e0aa958cb327d23c42e9375094d93b51ac609628b0293839d714861954c0af26b659e3

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWgD:RWWBibyl

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • ac4dcd61b3feeb9c6e201cbf57bf0cc0N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections