General

  • Target

    lol.exe

  • Size

    18KB

  • MD5

    daf92ca2437d7d258fee66484f7d85bf

  • SHA1

    85ea68a1bb3b9b05ff7d481469a814e14630841f

  • SHA256

    7e8e8ab488883c1064e0f586bdbb11fe7b119eb134f3da2ded4f8409c33b68a4

  • SHA512

    b6b0ad6e8f182de302da763ab2307943e111f46748da2c7c830fa6e5ccf93dc722c21a2054888e03a6db674fb9fc47a8c363d51961bed485cf0db2173bf22e01

  • SSDEEP

    384:VEw7wknHOYXQdhLGPvCaV4pLS7OGQ8xy1CzchV/qAne:VEw7wkHOYEGPvCaV4pLzb1fD

Score
10/10

Malware Config

Signatures

  • ModiLoader Second Stage 1 IoCs
  • Modiloader family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • lol.exe
    .exe windows x86


    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Sections