Resubmissions

26/10/2024, 03:01

241026-dhwp2azell 10

26/10/2024, 02:58

241026-dgmezazejr 10

General

  • Target

    PUB.rar

  • Size

    2.1MB

  • MD5

    30eb53e0573efa13fb1ca72543dc0469

  • SHA1

    52f2011fc42da0dfe0ccead84aeed59bb839c589

  • SHA256

    5b06e18380c2c8261419a482e5d54b189bbe9b0feaccd355c3cb1bc4aaedd017

  • SHA512

    a77bacf4625095f27c6add2aad09b2af02905eba3a9e968cfc03d1ff6b1dd0baad2447f7cd9e9955acaec24b4ede4233774f52bc64ba93c3d987644b30c4b67b

  • SSDEEP

    49152:+yvOacuT9fbDxw6++uxp+NqiDVkSPZ2yH5ujoiJ67XoifXUGOOnxc:JzfaJ+uxp+hPcJQfEQxc

Score
10/10

Malware Config

Signatures

  • XMRig Miner payload 2 IoCs
  • Xmrig family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • PUB.rar
    .rar
  • PUB/WinRing0x64.sys
    .sys windows:6 windows x64 arch:x64

    d41fa95d4642dc981f10de36f4dc8cd7


    Code Sign

    Headers

    Imports

    Sections

  • PUB/xmrig.exe
    .exe windows:6 windows x64 arch:x64

    12806e48b853545b536463546db4baa1


    Headers

    Imports

    Sections

  • PUB/zephyr - Copie (2).bat
  • PUB/zephyr - Copie (3).bat
  • PUB/zephyr - Copie (4).bat
  • PUB/zephyr - Copie (5).bat
  • PUB/zephyr - Copie (6).bat
  • PUB/zephyr - Copie (7).bat
  • PUB/zephyr - Copie (8).bat
  • PUB/zephyr - Copie (9).bat
  • PUB/zephyr - Copie.bat
  • PUB/zephyr.bat