General

  • Target

    $RY0OI87.exe

  • Size

    1.4MB

  • MD5

    74339dc2bf5c2fafb7c4cc9624555c53

  • SHA1

    f22eed9b5820caa3febd3ee6aa6ba25966dcb9fa

  • SHA256

    832a5b737842f77fe8e61082da70c49a82518cb87db4436ae4d92108269bb95d

  • SHA512

    f8aac2c8ab992e0a54fcf051dff70a3cb44894b3c0d93ae45d36d394f530dc3955b5ffd576f4ef33ca6b0154f97eae98fb8b4ffaf0335205f4e35e997b72a461

  • SSDEEP

    24576:VutNxz8Z47B5M/u79xt0/S11Zq0R1R29cQNN61CdoHVah6M5BRF5vbrAIGl+K0Kw:A/xoiBCc9xt0/UsYMceUCduVax5BRfr5

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Files

  • $RY0OI87.exe
    .zip

    Password: S@ndb0x!2023@@

  • Device/HarddiskVolume4/$Recycle.Bin/S-1-5-21-1543294044-159339151-130505776-1001/$RY0OI87.exe
    .exe windows x64

    Password: S@ndb0x!2023@@


    Code Sign

    Headers

    Sections

  • out.upx
    .exe windows x64


    Headers

    Sections

  • manifest.json