General

  • Target

    a0a2d1fc3ad4683f8cdd5ab29312f5c515e8543404926a94db641022c9ab40f8

  • Size

    132KB

  • MD5

    aaadb684ed709d76869a3f281cc0df46

  • SHA1

    06f925678d81713afc4b98f6ccb79ee577022133

  • SHA256

    a0a2d1fc3ad4683f8cdd5ab29312f5c515e8543404926a94db641022c9ab40f8

  • SHA512

    65ca3ff0d23ebd2e4d7e1912abce698a947e09c1db95e8e5fd946449a8de7e31b3239eae7a1f880f9928e44836f2c4a76956118b8e6166a44f81ca815fa180ff

  • SSDEEP

    3072:FpiKFe5nixvI40s7kTUlfU29ro/O8fbODi0FxPfVAmdn:FpTFZQ402UBfEDFRfVRn

Score
9/10

Malware Config

Signatures

  • CryptOne packer 1 IoCs

    Detects CryptOne packer defined in NCC blogpost.

Files

  • a0a2d1fc3ad4683f8cdd5ab29312f5c515e8543404926a94db641022c9ab40f8
    .rar
  • Dokumenty, sverka za ves' aprel'.exe
    .exe windows x86

    a4353610e5ff8a9b5525ddaf8c291b61


    Code Sign

    Headers

    Imports

    Sections