Overview

overview

7

Static

static

7

romantokan...01.zip

windows7-x64

1

romantokan...01.zip

windows10-2004-x64

1

romantokan...in.txt

windows7-x64

1

romantokan...in.txt

windows10-2004-x64

1

romantokan...me.txt

windows7-x64

1

romantokan...me.txt

windows10-2004-x64

1

romantokan...na.exe

windows7-x64

7

romantokan...na.exe

windows10-2004-x64

7

out.exe

windows7-x64

out.exe

windows10-2004-x64

romantokan...na.tcl

windows7-x64

3

romantokan...na.tcl

windows10-2004-x64

3

romantokan...ne.txt

windows7-x64

1

romantokan...ne.txt

windows10-2004-x64

1

romantokan...mp.txt

windows7-x64

1

romantokan...mp.txt

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    romantokana_2009092601.zip

  • Size

    1.2MB

  • MD5

    7990a35e588d7d71b905941462f4608a

  • SHA1

    777e263dad4c8191418a9e53d93ba6487c16442a

  • SHA256

    722c29acc7b4da6703d4ea93145d0fb97b554edc03dd72386cc501c71f7a5658

  • SHA512

    8f8a0bbaafeff5c38073378b9e121aa2a11004e0dfca7afd4d849c4e23e5f41e93c5d5380eabfb09c4451b1a6d87f29d5e324e20e3338f744b0cff8678055faa

  • SSDEEP

    24576:J7r4plqPiJJR4aRpCYUXsSi5YXFV2589PZRWWSFyjsGmw:hkqKJrffCT8SiH8vQWyUmw

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Files

  • romantokana_2009092601.zip
    .zip
  • romantokana/plugin.txt
  • romantokana/readme.txt
  • romantokana/romantokana.exe
    .exe windows x86


    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Exports

    Sections

  • romantokana/romantokana.tcl
  • romantokana/romantokana_phone.txt
  • romantokana/romantokana_temp.txt