Overview

overview

8

Static

static

3

Debug/Guna.UI.dll

windows7-x64

8

Debug/Guna.UI.dll

windows10-2004-x64

1

Debug/LetLiner.py

windows7-x64

3

Debug/LetLiner.py

windows10-2004-x64

3

Debug/Run ...n).bat

windows7-x64

3

Debug/Run ...n).bat

windows10-2004-x64

3

Debug/Run ...n).bat

windows7-x64

3

Debug/Run ...n).bat

windows10-2004-x64

3

Debug/Siticone.UI.dll

windows7-x64

1

Debug/Siticone.UI.dll

windows10-2004-x64

1

Debug/Trox...API.py

windows7-x64

3

Debug/Trox...API.py

windows10-2004-x64

3

Debug/WCI.bat

windows7-x64

1

Debug/WCI.bat

windows10-2004-x64

1

Debug/Wann...ce.exe

windows7-x64

1

Debug/Wann...ce.exe

windows10-2004-x64

1

Debug/Westrox.C.exe

windows7-x64

3

Debug/Westrox.C.exe

windows10-2004-x64

3

Debug/Wind...er.exe

windows7-x64

1

Debug/Wind...er.exe

windows10-2004-x64

1

Debug/dat.bat

windows7-x64

3

Debug/dat.bat

windows10-2004-x64

3

Debug/msg.vbs

windows7-x64

1

Debug/msg.vbs

windows10-2004-x64

1

Debug/pysx.py

windows7-x64

3

Debug/pysx.py

windows10-2004-x64

3

Debug/suscribe.vbs

windows7-x64

1

Debug/suscribe.vbs

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    uh uh.zip

  • Size

    4.4MB

  • MD5

    2fddc0dfe3d811550f5f62867e3f79ed

  • SHA1

    1a41669b014c1f07c66a41774edd438ab2bc53fa

  • SHA256

    3c1d2e1bbe67fb6795cfa721186e0b9a204026d4fc647b83ed00b1b1aac53af6

  • SHA512

    13af652d49946405457cae36e7f1bc5f1df5a9d5dd604694cc438a1655cde66b69e712b20216eba1485a9101ef2bc858875d446b484f5eeea45b4ba88c6c39c8

  • SSDEEP

    98304:FAvRE58qmtzWk/BoCqFNwb7dviDgbnfgP65NAx/ozeVOcMtYw:FLTmbCC9JiDcrAxgzxXF

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • uh uh.zip
    .zip
  • Debug/Guna.UI.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Debug/LetLiner.py
  • Debug/Read ME FIRST.txt
  • Debug/Run Non Dangerous (admin).bat
  • Debug/Run dangerous (admin).bat
  • Debug/Siticone.UI.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Debug/Trox_Stealer_API.py
  • Debug/WCI.bat
  • Debug/WannaC Custom Interface.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Debug/Westrox.C.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Debug/WindowsDefenderTrasher.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Debug/dat.bat
  • Debug/desktop.ini
  • Debug/msg.vbs
  • Debug/pysx.py
  • Debug/suscribe.txt
  • Debug/suscribe.vbs