Resubmissions

19-10-2022 21:03

221019-zv2byagfgk 10

19-10-2022 20:57

221019-zr17rsgee8 10

General

  • Target

    123.zip

  • Size

    2.2MB

  • MD5

    68202621505a0198a68b7afe8200197c

  • SHA1

    22a0314908327691c897ad6cb2fad526e703e2e8

  • SHA256

    fdd2ae3a7ac4e82c84b9cf26c1669122342be929d7158cac317968effeb3676b

  • SHA512

    1ed27d15730b4cde65ebcf4718166bc24c768c809a3119e96620130d2d4bb9bfb8ca062a3a6231890d80f47e073402c72d3ed4fd44b107468626712e05873e1e

  • SSDEEP

    49152:2df//kjv6QtjFC9dlQVzmqRRQc7KQ58q6exfzF1X8CmcBGwf:I3sjrjFc2zfec7h6uzTDmcBrf

Score
10/10

Malware Config

Signatures

  • Detecting the common Go functions and variables names used by Snatch ransomware 1 IoCs
  • Snatch family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Files

  • 123.zip
    .zip

    Password: infected

  • 2e87dd5a57f8e99a4bbe841354a61508a3f203650b123f93f2c54c387edc2e91
    .exe windows x86

    Password: infected


    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Sections