@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo
General
-
Target
d2c803c04310f3f81570d72c86065115a03d607f9a1244478706e757716293fd.zip.zip
-
Size
59.1MB
-
MD5
de1bbb16e8601c2a4c642df8c17668f9
-
SHA1
c8ce704da3cb10fd317fd330b65e5af5ce47e4e0
-
SHA256
f5f25610b15608519cc3ff5e0b8dbd57dddd3a54c8a42df5d23b2ab99bd83657
-
SHA512
cdb9418e78b6e2b9fcee36eac60e7977cc2c472baa45aee114aced4db57a397c8078cd503c279e0a42a16677f14b70dd28febbde4b6e1449b7457c59ffe9b1bd
-
SSDEEP
1572864:6M+WlMErivMJa/+zV8DrqJiwOc5zX9bnLj4cPeQCvVAEkFRFqa3a:b+WjivMkWzuDGNl9UcPenVk/dq
Score
10/10
Malware Config
Signatures
-
Nirsoft 1 IoCs
-
UPX packed file 16 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 21 IoCs
Checks for missing Authenticode signature.
Files
-
d2c803c04310f3f81570d72c86065115a03d607f9a1244478706e757716293fd.zip.zip
Password: infected
-
d2c803c04310f3f81570d72c86065115a03d607f9a1244478706e757716293fd.zip
-
Hiren's.BootCD.7.7.iso
-
BootCD/Active.uha
-
BootCD/Aida.uha
-
BootCD/BiosBoot.uha
-
BootCD/DiskCmdr.uha
-
BootCD/Diskptch.uha
-
BootCD/DosBurn.uha
-
BootCD/DskMangr.uha
-
BootCD/EasyRecv.uha
-
BootCD/FastLynx.uha
-
BootCD/HDDReg.uha
-
BootCD/HDat2.uha
-
BootCD/HddTools.uha
-
BootCD/LapLink5.uha
-
BootCD/McAfee.uha
-
BootCD/Med_Tool.uha
-
BootCD/Mini98.uha
-
BootCD/NtPwd.uha
-
BootCD/PCDoctor.uha
-
BootCD/PCI32.uha
-
BootCD/PCcheck.uha
-
BootCD/PTD.uha
-
BootCD/PartCmdr.uha
-
BootCD/PartMngr.uha
-
BootCD/QuickVie.uha
-
BootCD/RegView.uha
-
BootCD/SavePart.uha
-
BootCD/Tools.uha
-
BootCD/Vdefs/HowTo.txt
-
BootCD/Win311.uha
-
BootCD/WinTools/Ad-Aware.uha
-
BootCD/WinTools/CPUz.bat
-
BootCD/WinTools/CurrPort.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/DTemp.att
-
BootCD/WinTools/DTemp.exe
Headers
Sections
-
out.upx
Headers
Exports
Sections
-
BootCD/WinTools/DoubleDriver.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/DrvImgXp.bat
-
BootCD/WinTools/DrvImgXp.uha
-
BootCD/WinTools/DskSpeed.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/GhostExp.bat
-
BootCD/WinTools/GhostExp.uha
-
BootCD/WinTools/HijackThis.exe
Headers
Sections
-
BootCD/WinTools/IBProcMan.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/McAfee.bat
-
BootCD/WinTools/NewSID.exe
Headers
Sections
-
BootCD/WinTools/Restorat.uha
-
BootCD/WinTools/SpaceMonger.exe
Headers
Sections
-
BootCD/WinTools/SpybotSD.exe
Headers
Sections
-
BootCD/WinTools/StartupCPL.exe
Headers
Sections
-
BootCD/WinTools/StartupMonitor.exe
Headers
Sections
-
BootCD/WinTools/Undelete.exe
Headers
Sections
-
BootCD/WinTools/VolcovCommander.bat
-
BootCD/WinTools/ad-aware.bat
-
BootCD/WinTools/cpuz.uha
-
BootCD/WinTools/fprot.bat
-
BootCD/WinTools/memTest.exe
Headers
Sections
-
BootCD/WinTools/pagedfrg.exe
Headers
Sections
-
BootCD/WinTools/pci32.bat
-
BootCD/WinTools/restoration.bat
-
BootCD/WinTools/snapshot.exe
Headers
Sections
-
BootCD/WinTools/splitjoin.exe
Headers
Sections
-
BootCD/WinTools/unknowndevices.bat
-
BootCD/adds.uha
-
BootCD/astra.uha
-
BootCD/atis.uha
-
BootCD/chntpw.uha
-
BootCD/dcc.uha
-
BootCD/dosnav.uha
-
BootCD/fm.uha
-
BootCD/fprot.uha
-
BootCD/fw.uha
-
BootCD/ghost.uha
-
BootCD/ghstwalk.uha
-
BootCD/hwinfo.uha
-
BootCD/lost_fnd.uha
-
BootCD/mix.uha
-
BootCD/mpxplay.uha
-
BootCD/network.uha
-
BootCD/nortUTIL.uha
-
BootCD/nssi.uha
-
BootCD/ntfs.uha
-
BootCD/ntfs4dos.uha
-
BootCD/pRESIZER.uha
-
BootCD/pcconfig.uha
-
BootCD/pqdi.uha
-
BootCD/pqpm.uha
-
BootCD/sa.uha
-
BootCD/testdisk.uha
-
BootCD/ts.uha
-
BootCD/uharcd.exe
-
BootCD/vc.uha
-
Readme.txt
-
[BOOT]/Boot-1.44M.img
-
keyboard patch/Patch.bat
-
keyboard patch/Readme.txt
-
keyboard patch/keyb.dat
-
keyboard patch/keyb.sys