IP08542D64378G854333747BD0F9F1C76493D2CBE493101A036A53F991D9FB61FC719EE482F360DAA29HJU5E366[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

IP08542D64378G854333747BD0F9F1C76493D2CBE493101A036A53F991D9FB61FC719EE482F360DAA29HJU5E366.zip
Size

24.7MB
MD5

f8394e25c152aef6bcb25e6022e138f9
SHA1

eb4f54327eb45e33ab3b43e222358c844e6fb7f0
SHA256

204bf1666d2b6bab001e4132e1b83e94548d5fbbd4b4f778ef828be7c89ab7ad
SHA512

78b532a76eae771d4566817ca9a79fa39bf8a6866f3e8879b2d84bcb185f3e88e04b54d6bb37459111859305b503926efbaf29eadc37f995a994f65d1f741a01
SSDEEP

786432:qkS/Dnr5yhCJRzgwXPcXO5IH3uNsaOfTUjyzG:q1r/pXPcXO503KUrUjyzG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SRBMiner.exe

Files

IP08542D64378G854333747BD0F9F1C76493D2CBE493101A036A53F991D9FB61FC719EE482F360DAA29HJU5E366.zip
.zip
SRBMiner.exe
.exe windows:4 windows x64 arch:x64

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Exports

Exports

MHD_add_connection
MHD_add_response_footer
MHD_add_response_header
MHD_create_response_for_upgrade
MHD_create_response_from_buffer
MHD_create_response_from_callback
MHD_create_response_from_data
MHD_create_response_from_fd
MHD_create_response_from_fd64
MHD_create_response_from_fd_at_offset
MHD_create_response_from_fd_at_offset64
MHD_del_response_header
MHD_destroy_response
MHD_free
MHD_get_connection_info
MHD_get_connection_values
MHD_get_daemon_info
MHD_get_fdset
MHD_get_fdset2
MHD_get_reason_phrase_for
MHD_get_response_header
MHD_get_response_headers
MHD_get_timeout
MHD_get_version
MHD_http_unescape
MHD_is_feature_supported
MHD_lookup_connection_value
MHD_queue_response
MHD_quiesce_daemon
MHD_resume_connection
MHD_run
MHD_run_from_select
MHD_set_connection_option
MHD_set_connection_value
MHD_set_panic_func
MHD_set_response_options
MHD_start_daemon
MHD_start_daemon_va
MHD_stop_daemon
MHD_suspend_connection
MHD_upgrade_action

Sections

Size: 2.3MB - Virtual size: 8.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 17.7MB - Virtual size: 27.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 321KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 77KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 97KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 72KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1.8MB - Virtual size: 10.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
pepew(Copy 10).bat
pepew(Copy 11).bat
pepew(Copy 12).bat
pepew(Copy 13).bat
pepew(Copy 14).bat
pepew(Copy 15).bat
pepew(Copy 16).bat
pepew(Copy 17).bat
pepew(Copy 18).bat
pepew(Copy 19).bat
pepew(Copy 2).bat
pepew(Copy 20).bat
pepew(Copy 21).bat
pepew(Copy 22).bat
pepew(Copy 23).bat
pepew(Copy 24).bat
pepew(Copy 25).bat
pepew(Copy 26).bat
pepew(Copy 27).bat
pepew(Copy 28).bat
pepew(Copy 29).bat
pepew(Copy 3).bat
pepew(Copy 30).bat
pepew(Copy 31).bat
pepew(Copy 32).bat
pepew(Copy 4).bat
pepew(Copy 5).bat
pepew(Copy 6).bat
pepew(Copy 7).bat
pepew(Copy 8).bat
pepew(Copy 9).bat
pepew(Copy).bat
pepew.bat

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 2.3MB - Virtual size: 8.6MB

Size: 2KB - Virtual size: 36KB

Size: 17.7MB - Virtual size: 27.0MB

Size: 321KB - Virtual size: 1.2MB

Size: 77KB - Virtual size: 128KB

Size: 97KB - Virtual size: 408KB

Size: - Virtual size: 72KB

Size: - Virtual size: 4KB

Size: 512B - Virtual size: 16KB

Size: 512B - Virtual size: 4KB

Size: - Virtual size: 4KB

Size: - Virtual size: 8KB

Size: 4KB - Virtual size: 16KB

.rsrc Size: 6KB - Virtual size: 8KB

Size: 1.8MB - Virtual size: 10.0MB

Size: 2.5MB - Virtual size: 2.5MB

.rsrc
Size: 6KB - Virtual size: 8KB