Overview

overview

10

Static

static

10

2025-03-31...at.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-31_fd6057980c0ea5911a7106c356b072f6_cobalt-strike_poet-rat

  • Size

    3.9MB

  • MD5

    fd6057980c0ea5911a7106c356b072f6

  • SHA1

    f134d8ca5ad8450b76b7a86b024d87f683d4652e

  • SHA256

    e543432d278914ad7deddbe3a92024ad991cb1fa0230decb2fa71b9801e1df3b

  • SHA512

    a86976253eea85175ec0a2f59be52a2fb338a965675395d9fd728d1b95239d4cbb055a78be801ac5324d54df0c0719ed474dc58775333406f768fc04f8354b82

  • SSDEEP

    49152:oezaTF8FcNkNdfE0pZ9ozt4wIt56uL3pgrCEdMKPFotsgEBr6GjvzW+UBA3GdAO8:oemTLkNdfE0pZrt56utgpPFotBER/x

Score
10/10
minerupxxmrig

Malware Config

Signatures

  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2025-03-31_fd6057980c0ea5911a7106c356b072f6_cobalt-strike_poet-rat
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections