Overview

overview

3

Static

static

3

carb0n cry...nt.exe

windows7-x64

1

carb0n cry...nt.exe

windows10-2004-x64

1

carb0n cry...m1.vbs

windows7-x64

1

carb0n cry...m1.vbs

windows10-2004-x64

1

carb0n cry...m2.vbs

windows7-x64

1

carb0n cry...m2.vbs

windows10-2004-x64

1

carb0n cry...e1.vbs

windows7-x64

1

carb0n cry...e1.vbs

windows10-2004-x64

1

carb0n cry...in.vbs

windows7-x64

1

carb0n cry...in.vbs

windows10-2004-x64

1

carb0n cry...on.vbs

windows7-x64

1

carb0n cry...on.vbs

windows10-2004-x64

1

carb0n cry...e2.vbs

windows7-x64

1

carb0n cry...e2.vbs

windows10-2004-x64

1

carb0n cry...e4.vbs

windows7-x64

1

carb0n cry...e4.vbs

windows10-2004-x64

1

carb0n cry...e6.vbs

windows7-x64

1

carb0n cry...e6.vbs

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Crypter.Win32.Carb0n.a.rar

  • Size

    167KB

  • MD5

    119f726dd2f6e48b067963b77eadff15

  • SHA1

    5f1040e37903befffd6fa2be770033348a09be37

  • SHA256

    757dc3acf13224e2fbe1c3e3bf69c030a5e8e8e83e971fea03ddc4f893faf7c0

  • SHA512

    ab141236556fa2bc8b756d69c77e1a0b0493b3754cb6a4519559d13d4c52af3ae95132ec6d27aa635f1828eef14aa442a9cc5e083db60313bf71fd87dba7ef6f

  • SSDEEP

    3072:ckGZkweAO16ul4ED+RS31B12XeCAZ2j92xMVb37G8sKuUJ7ooAZh4UVN9WQjZ20:ckGeOuN+Y70AZ2jHHsJUJ7ooyh4UVNpH

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Crypter.Win32.Carb0n.a.rar
    .rar
  • carb0n crypter 1.7 [fix]/Client/101.RES
  • carb0n crypter 1.7 [fix]/Client/Client.exe
    .exe windows:4 windows x86

    01fb03686208e15914ec2117ae4019b2


    Headers

    Imports

    Sections

  • carb0n crypter 1.7 [fix]/Client/EXE.RES
  • carb0n crypter 1.7 [fix]/Client/Form1.frm
    .vbs
  • carb0n crypter 1.7 [fix]/Client/Form1.frx
  • carb0n crypter 1.7 [fix]/Client/Form1.log
  • carb0n crypter 1.7 [fix]/Client/Form2.frm
    .vbs
  • carb0n crypter 1.7 [fix]/Client/Form2.frx
  • carb0n crypter 1.7 [fix]/Client/Form2.log
  • carb0n crypter 1.7 [fix]/Client/Form3.frm
  • carb0n crypter 1.7 [fix]/Client/Form3.frx
  • carb0n crypter 1.7 [fix]/Client/Form4.frx
  • carb0n crypter 1.7 [fix]/Client/Form4.log
  • carb0n crypter 1.7 [fix]/Client/Module1.bas
    .vbs
  • carb0n crypter 1.7 [fix]/Client/Module2.bas
  • carb0n crypter 1.7 [fix]/Client/Module3.bas
  • carb0n crypter 1.7 [fix]/Client/Project1.vbp
  • carb0n crypter 1.7 [fix]/Client/Project1.vbw
  • carb0n crypter 1.7 [fix]/Client/UsrSkin.ctl
    .vbs
  • carb0n crypter 1.7 [fix]/Client/UsrSkin.ctx
  • carb0n crypter 1.7 [fix]/Client/UsrSkin.log
  • carb0n crypter 1.7 [fix]/Client/chameleonButton.ctl
    .vbs
  • carb0n crypter 1.7 [fix]/Client/logo.JPG
    .jpg
  • carb0n crypter 1.7 [fix]/Client/mGUI.bas
  • carb0n crypter 1.7 [fix]/Client/rancid.ico
  • carb0n crypter 1.7 [fix]/Client/skin2/CloseButton.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/MaxButton.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/MinButton.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/RestoreButton.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/Thumbs.db
  • carb0n crypter 1.7 [fix]/Client/skin2/cd.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/cs.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/dreapta.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/jd.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/jos.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/js.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/stanga.bmp
  • carb0n crypter 1.7 [fix]/Client/skin2/upp.bmp
  • carb0n crypter 1.7 [fix]/Stub/Form1.frm
  • carb0n crypter 1.7 [fix]/Stub/Form1.frx
  • carb0n crypter 1.7 [fix]/Stub/Module1.bas
  • carb0n crypter 1.7 [fix]/Stub/Module2.bas
    .vbs
  • carb0n crypter 1.7 [fix]/Stub/Module3.bas
  • carb0n crypter 1.7 [fix]/Stub/Module4.bas
    .vbs
  • carb0n crypter 1.7 [fix]/Stub/Module5.bas
  • carb0n crypter 1.7 [fix]/Stub/Module6.bas
    .vbs
  • carb0n crypter 1.7 [fix]/Stub/Project1.vbp
  • carb0n crypter 1.7 [fix]/Stub/Project1.vbw