General

  • Target

    bOkd.exe

  • Size

    232KB

  • MD5

    2649d1694d2c3c205dcfef77f46dc6d3

  • SHA1

    b49f853748535c9f5b0f941dfeb3b1c4eabbf8e3

  • SHA256

    9f2ad7a1298899ad6882147e75cedf9ef7edb378632e6ae3a8c00051b155fecd

  • SHA512

    88575b4516aa78b2c8a52ffd0cce6d38f908f1b50be067d302dba8b8487a2e930251cd905bcfafce6449b7320b3a8b6e42b0ec7a6d323af54b1cc55956e57c3d

  • SSDEEP

    6144:8vGSN9gWuLpcBKnVBYAsmrzpyDfOXXVxB3:8vbGWulcBKV3uOXF

Score
10/10

Malware Config

Signatures

  • Remcos family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • bOkd.exe
    .exe windows x86


    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Sections