_cgo_dummy_export
authorizerTrampoline
callbackTrampoline
commitHookTrampoline
compareTrampoline
doneTrampoline
preUpdateHookTrampoline
rollbackHookTrampoline
stepTrampoline
updateHookTrampoline
General
-
Target
samples.zip
-
Size
5.9MB
-
MD5
e7985a6dca8c3ac291484eb8836c8c23
-
SHA1
3e7960ab5526d71e089c17aebc46487c50d97225
-
SHA256
87de79fc5b8d6a097edc2c7c0776002fc19d3211bd037a95202a0f61e3d2bc46
-
SHA512
17bb97ed5815268690fd3a07bce9394f17023c5b296544a708656ce82181b7e908308c1c9ea45d98133710db26493b29c017d7d7450d2e0bea59c470ab4c55a8
-
SSDEEP
98304:RThlmcTjCJ6zn2J7fPXEZopGHzVmy56wVjh1ng2yjtQyJ+tTvLqnNWyQcYuQodq7:RLvTjCMn2BPXEZop6zVmi6c1lklO72nu
Score
8/10
Malware Config
Signatures
-
Patched UPX-packed file 1 IoCs
Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
samples.zip
Password: infected
-
1fa9a26ea5e196de688700c2274a3039a53a00caa78193b5d28a6577d5308400
Headers
Exports
Sections