@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo
General
-
Target
238d087c5ca63658f3ad7bdaa33fe8a9dbcc989ccd37be50d183f6b672e66740.zip.zip
-
Size
59.9MB
-
MD5
b6330b3558cf428b485b21d0636b7260
-
SHA1
89965a096265954e92de6f742f3ecfb5a9c01359
-
SHA256
ce7365084bcadbf4bf6f6f286a7f6380d4af87509f552814069cacca5c5d202f
-
SHA512
df18aebf2e77a0de6b9c0a9f12b2c3186d17145e9c7dcab7aec71981cb2ae13a01c46cb2619720b41ff825aca86c3fa90f8d63683c21722b9784d7876144d818
-
SSDEEP
1572864:7nU5Ln9Y7xEz/u/dYP2oNjDYs+2jle+cI5eWMFOw5bl:7nU5a7xEz/bP2iY2ef6wj
Score
10/10
Malware Config
Signatures
-
Nirsoft 1 IoCs
-
UPX packed file 17 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 22 IoCs
Checks for missing Authenticode signature.
Files
-
238d087c5ca63658f3ad7bdaa33fe8a9dbcc989ccd37be50d183f6b672e66740.zip.zip
Password: infected
-
238d087c5ca63658f3ad7bdaa33fe8a9dbcc989ccd37be50d183f6b672e66740.zip
-
Hiren's.BootCD.7.8.iso
-
BootCD/Active.uha
-
BootCD/BiosBoot.uha
-
BootCD/DiskCmdr.uha
-
BootCD/Diskptch.uha
-
BootCD/DosBurn.uha
-
BootCD/DskMangr.uha
-
BootCD/EasyRecv.uha
-
BootCD/FastLynx.uha
-
BootCD/HDDReg.uha
-
BootCD/HDat2.uha
-
BootCD/HddTools.uha
-
BootCD/LapLink5.uha
-
BootCD/McAfee.uha
-
BootCD/Med_Tool.uha
-
BootCD/Mini98.uha
-
BootCD/NtPwd.uha
-
BootCD/PCDoctor.uha
-
BootCD/PCI32.uha
-
BootCD/PCcheck.uha
-
BootCD/PTD.uha
-
BootCD/PartCmdr.uha
-
BootCD/PartMngr.uha
-
BootCD/QuickVie.uha
-
BootCD/RegView.uha
-
BootCD/SavePart.uha
-
BootCD/Tools.uha
-
BootCD/Vdefs/HowTo.txt
-
BootCD/Win311.uha
-
BootCD/WinTools/Ad-Aware.uha
-
BootCD/WinTools/CPUz.bat
-
BootCD/WinTools/CurrPort.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/DTemp.att
-
BootCD/WinTools/DTemp.exe
Headers
Sections
-
out.upx
Headers
Exports
Sections
-
BootCD/WinTools/DoubleDriver.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/DrvImgXp.bat
-
BootCD/WinTools/DrvImgXp.uha
-
BootCD/WinTools/DskSpeed.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/GhostExp.bat
-
BootCD/WinTools/GhostExp.uha
-
BootCD/WinTools/HijackThis.exe
Headers
Sections
-
BootCD/WinTools/IBProcMan.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/McAfee.bat
-
BootCD/WinTools/NewSID.exe
Headers
Sections
-
BootCD/WinTools/Restorat.uha
-
BootCD/WinTools/SpaceMonger.exe
Headers
Sections
-
BootCD/WinTools/SpybotSD.exe
Headers
Sections
-
BootCD/WinTools/StartupCPL.exe
Headers
Sections
-
BootCD/WinTools/StartupMonitor.exe
Headers
Sections
-
BootCD/WinTools/Undelete.exe
Headers
Sections
-
BootCD/WinTools/VolcovCommander.bat
-
BootCD/WinTools/ad-aware.bat
-
BootCD/WinTools/coolwebsearch.exe
Headers
Sections
-
BootCD/WinTools/cpuz.uha
-
BootCD/WinTools/fprot.bat
-
BootCD/WinTools/memTest.exe
Headers
Sections
-
BootCD/WinTools/pagedfrg.exe
Headers
Sections
-
BootCD/WinTools/pci32.bat
-
BootCD/WinTools/restoration.bat
-
BootCD/WinTools/snapshot.exe
Headers
Sections
-
BootCD/WinTools/splitjoin.exe
Headers
Sections
-
BootCD/WinTools/unknowndevices.bat
-
BootCD/adds.uha
-
BootCD/aida.uha
-
BootCD/astra.uha
-
BootCD/atis.uha
-
BootCD/chntpw.uha
-
BootCD/dcc.uha
-
BootCD/dosnav.uha
-
BootCD/fm.uha
-
BootCD/fprot.uha
-
BootCD/fw.uha
-
BootCD/ghost.uha
-
BootCD/ghstwalk.uha
-
BootCD/hwinfo.uha
-
BootCD/lost_fnd.uha
-
BootCD/mix.uha
-
BootCD/mpxplay.uha
-
BootCD/network.uha
-
BootCD/nortUTIL.uha
-
BootCD/nssi.uha
-
BootCD/ntfs.uha
-
BootCD/ntfs4dos.uha
-
BootCD/pRESIZER.uha
-
BootCD/pcconfig.uha
-
BootCD/pmount.uha
-
BootCD/pqdi.uha
-
BootCD/pqpm.uha
-
BootCD/sa.uha
-
BootCD/testdisk.uha
-
BootCD/ts.uha
-
BootCD/uharcd.exe
-
BootCD/vc.uha
-
Readme.txt
-
[BOOT]/Boot-1.44M.img
-
keyboard patch/Patch.bat
-
keyboard patch/Readme.txt
-
keyboard patch/keyb.dat
-
keyboard patch/keyb.sys