Local Virus Copies[.]zip

Sharing

Target

Local Virus Copies.zip
Size

20.7MB
MD5

1a2083f9f4353b3d9d2d8f5a98513f0c
SHA1

220b333dc1620434e104bdf070aef23aa6821569
SHA256

044c16cdbc6ec18f58bfecaacf4d4e21150a19d8d10c694c4a4c3085697499a2
SHA512

7a20d71a1e41f36b91e3c84aa3a3b249f4b4a092e6ab4d8c6c10915c1ba9d1e5dc40fb8d3040156422f85905d47930f2334ee1f2e9e848b5d3d7ae9d3e9c7b0f

Score

8^/10

upx pyinstaller

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

Processes:

resource	yara_rule
static1/unpack001/21c3fb175492561c6527cdefc46fde66ba2bc11ca4b50edf887423654ab8b259	upx
static1/unpack001/b6c343fd90ce107bd1e0ea2fec6b5d3a33637f0a6daa251256a533e426aa796f	upx

Detects Pyinstaller 1 IoCs

pyinstaller

Processes:

resource	yara_rule
static1/unpack001/aa7cce2f9f6776129e2c41c48171e597504a5354d34f7503630651a748ebee61	pyinstaller

NSIS installer 14 IoCs

installer

Processes:

resource	yara_rule
static1/unpack001/146bcd0d720f43d289c66d3a3cdc77e5e5a3d924174ee1993ac6db2cb0ca8026	nsis_installer_1
static1/unpack001/146bcd0d720f43d289c66d3a3cdc77e5e5a3d924174ee1993ac6db2cb0ca8026	nsis_installer_2
static1/unpack001/2a800cff4584740ee43108e122f4797c455e5b6097774aeb33ebe666170b4968	nsis_installer_1
static1/unpack001/2a800cff4584740ee43108e122f4797c455e5b6097774aeb33ebe666170b4968	nsis_installer_2
static1/unpack001/3571d9db0064c7e2ec8d856e9b9bd80f30ea45a3dabd811176c80863a85205bb	nsis_installer_1
static1/unpack001/3571d9db0064c7e2ec8d856e9b9bd80f30ea45a3dabd811176c80863a85205bb	nsis_installer_2
static1/unpack001/42fe5221797668a788756bb9995792ff47ddcb1ec9582a0f325535bcef1fa078	nsis_installer_1
static1/unpack001/42fe5221797668a788756bb9995792ff47ddcb1ec9582a0f325535bcef1fa078	nsis_installer_2
static1/unpack001/b27ee400ddd033d6ee17b294ca0c9077c1ababe60c79ae3c7b0555179689d333	nsis_installer_1
static1/unpack001/b27ee400ddd033d6ee17b294ca0c9077c1ababe60c79ae3c7b0555179689d333	nsis_installer_2
static1/unpack001/b6559bb03a3a150f020cd435a9d516d1b8b39b6abd34c66da6759e71bc7d9399	nsis_installer_1
static1/unpack001/b6559bb03a3a150f020cd435a9d516d1b8b39b6abd34c66da6759e71bc7d9399	nsis_installer_2
static1/unpack001/e2bbb71fe65dd6ffb22fcb05e99a687711d3d429c22d512a2a49166b69ffe3c6	nsis_installer_1
static1/unpack001/e2bbb71fe65dd6ffb22fcb05e99a687711d3d429c22d512a2a49166b69ffe3c6	nsis_installer_2

Local Virus Copies.zip
.zip

Password: haha
146bcd0d720f43d289c66d3a3cdc77e5e5a3d924174ee1993ac6db2cb0ca8026
.exe windows x86
21c3fb175492561c6527cdefc46fde66ba2bc11ca4b50edf887423654ab8b259
.exe windows x86
2a800cff4584740ee43108e122f4797c455e5b6097774aeb33ebe666170b4968
.exe windows x86
332d5c33b76318e30c94601d5fcca3dfe49c0a4a7c9f444681785e80d7c882d0
.exe windows x64
3571d9db0064c7e2ec8d856e9b9bd80f30ea45a3dabd811176c80863a85205bb
.exe windows x86
42fe5221797668a788756bb9995792ff47ddcb1ec9582a0f325535bcef1fa078
.exe windows x86
4bb0c1eec232aac63365ee4b30b1b567025b020d62fcd2c1e8321f2408b2bfaf
.exe windows x64
9d1871a7a1315b8c535fa1b673a427640cb4e75b03f1616cdd677345e82dce26
.exe windows x86
a2d4e5d989f091cc30e88e850af43ba620c893946a891217c0322f0ff29c2926
.exe windows x86
aa7cce2f9f6776129e2c41c48171e597504a5354d34f7503630651a748ebee61
.exe windows x86
b27ee400ddd033d6ee17b294ca0c9077c1ababe60c79ae3c7b0555179689d333
.exe windows x86
b6559bb03a3a150f020cd435a9d516d1b8b39b6abd34c66da6759e71bc7d9399
.exe windows x86
b6c343fd90ce107bd1e0ea2fec6b5d3a33637f0a6daa251256a533e426aa796f
.exe windows x86
cfc91db9240c75b636480e7dfaef4daaa754e787d2ecb32f55d74c5a20c9dfd1
.exe windows x86

Exports

Exports

TMethodImplementationIntercept
__dbk_fcall_wrapper
dbkFCallWrapperAddr
e2bbb71fe65dd6ffb22fcb05e99a687711d3d429c22d512a2a49166b69ffe3c6
.exe windows x86
fb812a3c965da5044860794686ce9656db3c37be16794ab7c771c32567514fed
.exe windows x86