Overview

overview

7

Static

static

7

BASSMOD.dll

windows7-x64

1

BASSMOD.dll

windows10-2004-x64

1

player.exe

windows7-x64

7

player.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    412ded612cc2f423d118514210d778f0c88593760c0d1ce5ab937fb3a898dbef.zip.zip

  • Size

    1.2MB

  • MD5

    fb9d43e6030e4ddab1d284edfe9dc0f5

  • SHA1

    9cf84a273d4e286721bb5bad62a1cb0af342a8a3

  • SHA256

    1d58ff2521366355fbae102f91a3e5154c70b5510f9b8d8c92fa62664413e7d2

  • SHA512

    073305a0a84a7418ba404c5a5e08ffdbfa2bd79a411a149b8a020a562a6ba0212f51fd30d3d067e6a1dee31aad69fef5f31705d4ac068b8ff67d53311dd48288

  • SSDEEP

    24576:qmxgj0MXwGke7TD++hzjjbaX57D7jiBjuQLU59gsO900GIvNMr8x6stYkhN28Y5:qr0mXp7TD+Izj3alnajaegAfntYl8Y5

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 412ded612cc2f423d118514210d778f0c88593760c0d1ce5ab937fb3a898dbef.zip.zip
    .zip

    Password: infected

  • 412ded612cc2f423d118514210d778f0c88593760c0d1ce5ab937fb3a898dbef.zip
    .zip
  • 1_1k/Anonymous-Subconnect.it
  • 1_1k/FW.XM
  • 1_1k/Laundry_time.xm
  • 1_1k/Low-Pain_clear.it
  • 1_1k/SpareBallad.anon.1k.it
  • 1_1k/WasteOfSpace_ANONYM.xm
  • 1_1k/autumn_rain.xm
  • 1_1k/bimbom_anonymized.xm
  • 1_1k/deskjockeys.it
  • 1_1k/fughetta-unsigned.it
  • 1_1k/novacrusader_compo.xm
  • 2_4k/(sampletest4)-unsigned.it
  • 2_4k/1_channel_moog-anonymized.it
  • 2_4k/8ksfat_anonymized.xm
  • 2_4k/Love-Serenade.xm
  • 2_4k/OWOLI.XM
  • 2_4k/Planet_Of_Illusions_And_Dreams.it
  • 2_4k/Ponganoid_4k_(anonymous).xm
  • 2_4k/Unsigned.xm
  • 2_4k/always less.xm
  • 2_4k/anonym-BLue Lagoon.xm
  • 2_4k/athmosic_4kb-compo.xm
  • 2_4k/broken-heart_clear.it
  • 2_4k/good night darling.xm
  • 2_4k/kung-fu.it
  • 2_4k/mrtva_cara_ahead_a.xm
  • 2_4k/pendulum.it
  • 2_4k/syksyinen_lehti.xm
  • 2_4k/vovoci_i.xm
  • 2_4k/walking_by_seashore.xm
  • 3_32k/Above The Sky.it
  • 3_32k/BIOANAL.XM
  • 3_32k/ByteBastard-03.xm
  • 3_32k/Destroyed_Amiga.xm
  • 3_32k/FEAR.IT
  • 3_32k/HIGH.XM
  • 3_32k/SIEGE.MOD
  • 3_32k/STAW.xm
  • 3_32k/Sounds old.xm
  • 3_32k/anonym-Old_skool_flavour.mod
  • 3_32k/chap_notext.xm
  • 3_32k/counterspell.xm
  • 3_32k/dark_steps_[unsigned].xm
  • 3_32k/euer_globaler_kapitalismus_zertrampelt_unsere_blauen_blumen.it
  • 3_32k/i-am-game-music-fan_anonymized.it
  • 3_32k/laukaisukoneisto-unsigned.it
  • 3_32k/say goodbye to your demoscene.xm
  • 3_32k/sippi8_(anonym).xm
  • 3_32k/snedsteg.xm
  • 3_32k/the_notebook.xm
  • 3_32k/tower.it
  • 3_32k/utopianstar_compo.xm
  • 3_32k/varana.anonym.xm
  • 4_64krmxMOD/ZX-Doom-Intro_crear.mod
  • 4_64krmxMOD/dontlie_anonymized.mod
  • 4_64krmxMOD/flyaway_notext.mod
  • 4_64krmxMOD/mario card.mod
  • 5_100k/Armed_Worm-anonymized.it
  • 5_100k/Artificial.xm
  • 5_100k/Bulimiasonni.it
  • 5_100k/GRD_7n8m_anonym.it
  • 5_100k/KineticEnergy.anon.100k.it
  • 5_100k/N3K3_A.IT
  • 5_100k/No_choice.xm
  • 5_100k/Pure-Life_clear.xm
  • 5_100k/THOD.MOD
  • 5_100k/ZERO.XM
  • 5_100k/bug_farm.anon.xm
  • 5_100k/cream_cracker_(anonym).xm
  • 5_100k/debut.xm
  • 5_100k/did_your_mother_read_you_stories.it
  • 5_100k/heypurpl_nosign.xm
  • 5_100k/illumination.it
  • 5_100k/ivebeen_ano.xm
  • 5_100k/paradown.xm
  • 5_100k/universalnetwork2_compo.xm
  • BASSMOD.dll
    .dll windows:4 windows x86


    Headers

    Exports

    Sections

  • player.exe
    .exe windows:4 windows x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86


    Headers

    Sections

  • results.txt