General

  • Target

    11969178080.zip

  • Size

    1.8MB

  • MD5

    61c60625b7cde0c33f29845814c8f530

  • SHA1

    1f25488ca2985e7c587597a687905137a64ccc64

  • SHA256

    55456e91675ccae7cbab722ee2d270ade96ab9cf62f7575c4f99ce622c536aa2

  • SHA512

    423b8067e8b737a4986a52fdb54635a477d8004d41a5344c81c830ac2684c62944144c5796a59d90c792c4d6a38fd369599d0242fcb89240dd6cce707cfa37d7

  • SSDEEP

    49152:FHbZyTOLdqLoAcTIMC0YOrxtlGkUGp+C/Hw+1XD:1bZyTMwLotPnrxjcGAC/QcD

Score
10/10

Malware Config

Signatures

  • Detected SUNBURST backdoor 1 IoCs

    SUNBURST is a backdoor for the SolarWinds Orion platform with extensive capabilities.

  • Sunburst family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 11969178080.zip
    .zip

    Password: infected

  • 9822803cb57c152024e45a705b91b5a550b6167c87a7d6bd2c7b1aefab7e82da
    .exe windows:5 windows x86


    Headers

    Sections