Static task
static1
Behavioral task
behavioral1
Sample
unpack001/f87be226e26e873275bde549539f70210ffe5e3a129448ae807a319cbdcf7789.exe
Resource
win7-en-20211104
Behavioral task
behavioral2
Sample
unpack001/f87be226e26e873275bde549539f70210ffe5e3a129448ae807a319cbdcf7789.exe
Resource
win10-en-20211014
General
-
Target
f87be226e26e873275bde549539f70210ffe5e3a129448ae807a319cbdcf7789.zip
-
Size
165KB
-
MD5
f5a84904e31aff1e3b0c92d02ef2dee8
-
SHA1
4dc76c27b712b78c7daea7928b95d7938d6df614
-
SHA256
789cd0cad5038521b6fb4565bec7dbd88b3badfc99861e247284b2931306c218
-
SHA512
bc0ad78a2e6fc4a0c58efd577293e51eeacb390a7779df741b4ee8aeb61c4c0e55c98e65bb942171de1e6441539cc729728284197c434fd73070f4e430f9f4bd
Malware Config
Signatures
-
Patched UPX-packed file 1 IoCs
Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.
Processes:
resource yara_rule static1/unpack001/f87be226e26e873275bde549539f70210ffe5e3a129448ae807a319cbdcf7789.exe patched_upx -
Processes:
resource yara_rule static1/unpack001/f87be226e26e873275bde549539f70210ffe5e3a129448ae807a319cbdcf7789.exe upx
Files
-
f87be226e26e873275bde549539f70210ffe5e3a129448ae807a319cbdcf7789.zip.zip
Password: infected
-
f87be226e26e873275bde549539f70210ffe5e3a129448ae807a319cbdcf7789.exe.exe windows x64