@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo
General
-
Target
13e79b4f2b46e1926735147b575e958a4dbab426a1a4a8820dc56589174104da.zip.zip
-
Size
60.3MB
-
MD5
2a6cb938cc43663157c6296cd667afa9
-
SHA1
e24f60b6288267a396ac3958e677827b7741bb27
-
SHA256
ca348973e3d6ca9acd1a37d67b95d75e5c333664b90c9793eb80058eabd0fcce
-
SHA512
fe7e38fdf312deeb694f6a6cdbaa0ddd6c222c78f7971916cba6e75b92566c4872bdf36bb111a4301c5dfc2f9ec5c2b2bf1e1ef0c6c8f173998add942606c202
-
SSDEEP
1572864:8Z5JPyUKItghjjIKcBDgBRJ30ZRRuvosS:sNKPh9YgBRlmRRuY
Score
10/10
Malware Config
Signatures
-
Nirsoft 1 IoCs
-
UPX packed file 18 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 23 IoCs
Checks for missing Authenticode signature.
Files
-
13e79b4f2b46e1926735147b575e958a4dbab426a1a4a8820dc56589174104da.zip.zip
Password: infected
-
13e79b4f2b46e1926735147b575e958a4dbab426a1a4a8820dc56589174104da.zip
-
Hiren's.BootCD.7.9.iso
-
BootCD/Active.uha
-
BootCD/BiosBoot.uha
-
BootCD/DiskCmdr.uha
-
BootCD/Diskptch.uha
-
BootCD/DosBurn.uha
-
BootCD/DskMangr.uha
-
BootCD/ESTest.uha
-
BootCD/EasyRecv.uha
-
BootCD/FastLynx.uha
-
BootCD/HDDReg.uha
-
BootCD/HDat2.uha
-
BootCD/HddTools.uha
-
BootCD/LapLink5.uha
-
BootCD/McAfee.uha
-
BootCD/Med_Tool.uha
-
BootCD/Mini98.uha
-
BootCD/NtPwd.uha
-
BootCD/PCDoctor.uha
-
BootCD/PCI32.uha
-
BootCD/PCcheck.uha
-
BootCD/PTD.uha
-
BootCD/PartCmdr.uha
-
BootCD/PartMngr.uha
-
BootCD/QuickVie.uha
-
BootCD/RegView.uha
-
BootCD/SavePart.uha
-
BootCD/Tools.uha
-
BootCD/Vdefs/HowTo.txt
-
BootCD/Vdefs/Vdefs.bat
-
BootCD/Victoria.uha
-
BootCD/Win311.uha
-
BootCD/WinTools/Ad-Aware.uha
-
BootCD/WinTools/CPUz.bat
-
BootCD/WinTools/CurrPort.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/DTemp.att
-
BootCD/WinTools/DTemp.exe
Headers
Sections
-
out.upx
Headers
Exports
Sections
-
BootCD/WinTools/DoubleDriver.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/DrvImgXp.bat
-
BootCD/WinTools/DrvImgXp.uha
-
BootCD/WinTools/DskSpeed.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/GhostExp.bat
-
BootCD/WinTools/GhostExp.uha
-
BootCD/WinTools/HijackThis.exe
Headers
Sections
-
BootCD/WinTools/IBProcMan.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/McAfee.bat
-
BootCD/WinTools/NewSID.exe
Headers
Sections
-
BootCD/WinTools/Restorat.uha
-
BootCD/WinTools/SpaceMonger.exe
Headers
Sections
-
BootCD/WinTools/SpybotSD.exe
Headers
Sections
-
BootCD/WinTools/StartupCPL.exe
Headers
Sections
-
BootCD/WinTools/StartupMonitor.exe
Headers
Sections
-
BootCD/WinTools/Undelete.exe
Headers
Sections
-
BootCD/WinTools/VDefs.exe
Headers
Sections
-
BootCD/WinTools/VolcovCommander.bat
-
BootCD/WinTools/ad-aware.bat
-
BootCD/WinTools/coolwebsearch.exe
Headers
Sections
-
BootCD/WinTools/cpuz.uha
-
BootCD/WinTools/fprot.bat
-
BootCD/WinTools/memTest.exe
Headers
Sections
-
BootCD/WinTools/pagedfrg.exe
Headers
Sections
-
BootCD/WinTools/pci32.bat
-
BootCD/WinTools/restoration.bat
-
BootCD/WinTools/snapshot.exe
Headers
Sections
-
BootCD/WinTools/splitjoin.exe
Headers
Sections
-
BootCD/WinTools/unknowndevices.bat
-
BootCD/adds.uha
-
BootCD/aida.uha
-
BootCD/astra.uha
-
BootCD/atis.uha
-
BootCD/chntpw.uha
-
BootCD/dcc.uha
-
BootCD/dosnav.uha
-
BootCD/fm.uha
-
BootCD/fprot.uha
-
BootCD/fw.uha
-
BootCD/ghost.uha
-
BootCD/ghstwalk.uha
-
BootCD/hwinfo.uha
-
BootCD/lost_fnd.uha
-
BootCD/mix.uha
-
BootCD/mpxplay.uha
-
BootCD/network.uha
-
BootCD/nortUTIL.uha
-
BootCD/nssi.uha
-
BootCD/ntfs.uha
-
BootCD/ntfs4dos.uha
-
BootCD/pRESIZER.uha
-
BootCD/pcconfig.uha
-
BootCD/pmount.uha
-
BootCD/pqdi.uha
-
BootCD/pqpm.uha
-
BootCD/sa.uha
-
BootCD/testdisk.uha
-
BootCD/ts.uha
-
BootCD/uharcd.exe
-
BootCD/vc.uha
-
Readme.txt
-
[BOOT]/Boot-1.44M.img
-
keyboard patch/Patch.bat
-
keyboard patch/Readme.txt
-
keyboard patch/keyb.dat
-
keyboard patch/keyb.sys