General

  • Target

    cbsidlm-cbsi134-Download_App-PBF-75864009.exe.7z

  • Size

    854KB

  • MD5

    4e10491959a4961157000ae2f6e2b273

  • SHA1

    6bb50e7bf7198fdceb30dbd0add345a885b7c740

  • SHA256

    f005be72e05d2edb48b0a5d540e845e30604f59a868173c059377f88039fa4a2

  • SHA512

    c850c70de268fd25c97bef09deeb782bd46e2ff03d41f9e53ab03d3e3924296537e845e8b519af2cb29db13bb28b6e36292b324f9c42706308e6dea88a2b2bf6

  • SSDEEP

    12288:hldfaqW24qhuZ3+jrX6ct/1iyW9NYZHafeuMtKYRbOVCbCSjOdBvk0HCmlhcs0Dk:xyq2hqWxKRa0vKfdCmlhsX0Y8/y7J5C

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • cbsidlm-cbsi134-Download_App-PBF-75864009.exe.7z
    .7z

    Password: infected

  • cbsidlm-cbsi134-Download_App-PBF-75864009.exe
    .exe windows x86


    Code Sign

    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Exports

    Sections