General

  • Target

    0458e53d489353996f36917e55e3d750N.exe

  • Size

    2.3MB

  • MD5

    0458e53d489353996f36917e55e3d750

  • SHA1

    970a21b41677aacc869cafafc21c76518b9f75e8

  • SHA256

    ba7d8b13193b29a9f16e377a85989b84f00f6e6eb23f3afec49faa02d80afc40

  • SHA512

    a7020dafa850c0dadd354ff37627625aa3774de4e9673f1acd64e1003179e4067c8dd7adb3c939eb822930bfb4dc6486b3c398bdcfbaed950c1e7fe97e2c8a48

  • SSDEEP

    49152:oezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNasrsQm7BZg/m:oemTLkNdfE0pZrwv

Score
10/10

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0458e53d489353996f36917e55e3d750N.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections