General

  • Target

    Phulli

  • Size

    521KB

  • MD5

    920612ac244a18f29b8eefa994b82ebd

  • SHA1

    c2650eff9709874d4875a41e9d40093f4fd08834

  • SHA256

    3e23809c8f13fb823831bde5d531b635f25215d80694872ac0fc0fe32fccf34a

  • SHA512

    803bf9fc942e662c5688d3be9ce64a7e8b69c8546ee67ef1256a07d0b552f699c0653550b5a8def989ecae22a9c4151f102dea026c71902763c2fb9bf3f60c71

  • SSDEEP

    6144:lbS/QTjhUqBfxrwEnuNcSsm7IoYGW0VvBXCAt6kihwE+VDpJYWmlwnx9tWPenPF9:lQtqB5urTIoYWBQk1E+VF9mOx9GePF

Score
10/10

Malware Config

Signatures

  • Nirsoft 1 IoCs
  • NirSoft MailPassView 1 IoCs

    Password recovery tool for various email clients

  • NirSoft WebBrowserPassView 1 IoCs

    Password recovery tool for various web browsers

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Phulli
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections