Overview

overview

9

Static

static

7

Acrobat.Pr...32.exe

windows7-x64

9

Acrobat.Pr...32.exe

windows10-2004-x64

9

Acrobat.Pr...64.exe

windows7-x64

9

Acrobat.Pr...64.exe

windows10-2004-x64

9

Activation.bat

windows7-x64

1

Activation.bat

windows10-2004-x64

9

www.adobe.com_.url

windows7-x64

1

www.adobe.com_.url

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    95df4ced53df46621ce0302514b0a6a0.bin

  • Size

    2.3MB

  • MD5

    59233b9473689a9b71a90fdc024b32fc

  • SHA1

    65afacff815daf143075b33381091dea3027976b

  • SHA256

    21510e990cdb172f4c324eb7fc154741c01fcb1ed67c80b7d43e680904acee06

  • SHA512

    e80d445609aabfa735c2811c95789b543d0cdecc16c72eba11c07cf7ba7c7d12b69da9418c3043d659e0f3fb885dad436baf8bbcf3d7e8e80c1684c6ac20349c

  • SSDEEP

    49152:RBnSfDccklriZmPPJJXYQfSWJc1QMssffOKdlgdBE98vdjMGq9QYVgal/D2Ow5XO:rQDcNlR3IQfSWK+Msd+gdBE92jNYVAO3

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 2 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 95df4ced53df46621ce0302514b0a6a0.bin
    .zip

    Password: infected

  • 03d93a10881d30d399c2ef0c90e6bc595452dded7224a5bd935576ad05405bcb.zip
    .zip

    Password: infected

  • Acrobat.Pro.2023.x32.exe
    .exe windows x86

    Password: infected


    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Sections

  • Acrobat.Pro.2023.x64.exe
    .exe windows x86

    Password: infected


    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Sections

  • Activation.bat
  • www.adobe.com_.url