bzminer_v21[.]5[.]1_windows[.]zip | Triage

Sharing

General

Target

bzminer_v21.5.1_windows.zip
Size

48.1MB
MD5

b105a1fc6b1bcfc613a4dec4ceda949d
SHA1

de681a2c867ccd9058885214663eed2763ffcf42
SHA256

87fae22d56dade8dd40b66dab4c4b7b4221e86f3750a96846ab64c755f5ba222
SHA512

6470e3929a98964e53c4ebf573672508aca6516fe507d56179a4f9a6877794cd10315fb4c8d5576e478b48a825f674e65fc7958db2bda1691d82049e0b8c61bf
SSDEEP

1572864:PfmS2bLSXUTz2fT7lZSsqfFB6iglwre/LMpINa77nD3WN79v:PZ2bLSmgZq9pgWreT47nD3qZ

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/bzminer.exe	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bzminer.exe

Files

bzminer_v21.5.1_windows.zip
.zip
Start-Clore.bat
Start-Ergo.bat
Start-Ethereum-Classic.bat
Start-Ethereum-POW.bat
Start-NEXA.bat
Start-Neurai.bat
Start-Ravencoin.bat
bzminer.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

UPX0
Size: - Virtual size: 68.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 48.1MB - Virtual size: 48.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
config.txt
from_config.bat
help.bat
index.html
.html .js polyglot
readme.txt