General
-
Target
family-puzzle.exe
-
Size
20.7MB
-
Sample
230503-w6fb3ahg9y
-
MD5
d928630f3ebb47a09a1a37aa93c24413
-
SHA1
c8ea2ab92e0e01faaffea1d85126b209f245cda7
-
SHA256
ab73b7672caedcbd128b04a654865c275c467ba387f9afa0568396db088578f2
-
SHA512
9f065dd1751b94eea0b780e9a2dbbd76216f2a7ccbfefb02b500216f30a48e24c57b18d770b8d30e48ae6eaa3126b006d7c45c88e958511a816a8cee8077b3a9
-
SSDEEP
393216:WIRkAJvGqWsE8fphdK+jjoH7PPB111Zlj7LoQnEV6F1gMa2aCbvN4T3I6CWP:aAMqg8BhdZPorp11Nj/oQEV63gMa2fKX
Malware Config
Targets
-
-
Target
family-puzzle.exe
-
Size
20.7MB
-
MD5
d928630f3ebb47a09a1a37aa93c24413
-
SHA1
c8ea2ab92e0e01faaffea1d85126b209f245cda7
-
SHA256
ab73b7672caedcbd128b04a654865c275c467ba387f9afa0568396db088578f2
-
SHA512
9f065dd1751b94eea0b780e9a2dbbd76216f2a7ccbfefb02b500216f30a48e24c57b18d770b8d30e48ae6eaa3126b006d7c45c88e958511a816a8cee8077b3a9
-
SSDEEP
393216:WIRkAJvGqWsE8fphdK+jjoH7PPB111Zlj7LoQnEV6F1gMa2aCbvN4T3I6CWP:aAMqg8BhdZPorp11Nj/oQEV63gMa2fKX
Score7/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-