General

  • Target

    9a112d4066ff3ff242f56e6332d586bf7f1179c649e0f69920adf9562867e892.zip.zip

  • Size

    207KB

  • MD5

    09e2bd51135d9f746a1eff302e8f62b9

  • SHA1

    ec5435f1e1a4553e6098a6b0d31f13144f16486b

  • SHA256

    8d3f1a806f9c1c5f359fb5634541d35a1f7a8c43dc2ca4974c9dd9fd4f9acb2d

  • SHA512

    c5de20719d5b7e2ea4e39dfe0f48ff9a1c1eb78cce4d92dad8660f7e74d10d53bb12ac37604e339b6920456166ff355602ca60e8094e4c9587824ef00a6bc8c4

  • SSDEEP

    6144:PHutmPVXqfh2U6WHisKjKGBsm0lnKb9g8kbbuORo/z1:POSdq4CisKjKGB+WCzfE/p

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 9a112d4066ff3ff242f56e6332d586bf7f1179c649e0f69920adf9562867e892.zip.zip
    .zip

    Password: infected

  • 9a112d4066ff3ff242f56e6332d586bf7f1179c649e0f69920adf9562867e892.zip
    .zip
  • USREX.EXE
    .exe windows:4 windows x86


    Headers

    Sections

  • gbp.dll
    .dll windows:4 windows x86


    Headers

    Exports

    Sections