General

  • Target

    d571d20baf445397b9d40d3b066dd1f0N.exe

  • Size

    1.7MB

  • MD5

    d571d20baf445397b9d40d3b066dd1f0

  • SHA1

    f7090e84f1f42a5ab8451b9c4b96919505868524

  • SHA256

    a26325ac1189080c4122450e3fc159be420e4bf5949bcc986bfb90f17b08566b

  • SHA512

    51dd92320a78d49e5f5f4728ccc42b39c06140728e77372ff5ae012cac8c968534aecf66c03c884ede78dbb3d2d2b1a0c21fe5df82ee9900e15d5e8e406b5b4d

  • SSDEEP

    49152:ROdWCCi7/raZ5aIwC+Agr6St1lOqq+jCpLWK:RWWBibyp

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • d571d20baf445397b9d40d3b066dd1f0N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections