Overview

overview

10

Static

static

10

90f4a3f9e5...8a.exe

windows7-x64

10

90f4a3f9e5...8a.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    90f4a3f9e5419fa67fa09e65a3b2c73b6f06db02afb74c65f790bb8e1ed21c8a

  • Size

    8.3MB

  • MD5

    2cc3d41e18c71902ccfd70ad3825caa0

  • SHA1

    2da87813ec28ade82b84b458da26de7d0739d853

  • SHA256

    90f4a3f9e5419fa67fa09e65a3b2c73b6f06db02afb74c65f790bb8e1ed21c8a

  • SHA512

    bf99b64ee529ecc1313bd6a73ae441a723ea1e8630a10ead19f376d13a0cabe0cea7093a5ab38aba688d6a294edaca1b2c808a8b5aa61ed9c2134f5d505fd26c

  • SSDEEP

    196608:ZTxfS9onJ5hrZE7B2WZufOuD9L/48RmU/3ZlsPv+kKytI/dATvN8CmYj:ZTxfS9c5hlE92WmfDZ/tN3ZWMccdATX

Score
10/10
upxmetasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Signatures

  • Metasploit family
    metasploit
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 90f4a3f9e5419fa67fa09e65a3b2c73b6f06db02afb74c65f790bb8e1ed21c8a
    .exe windows:5 windows x64


    Headers

    Sections

  • 001.pyc