General
-
Target
8adf51eb02663972dfa638ec72168ff921638888ab703989fed8ff59ea953adf.zip.zip
-
Size
12.5MB
-
MD5
1cb39e9d450e222953e5f6e1c6f9ff6e
-
SHA1
2de8f0bbb928422c27aeadac42023265aade4a91
-
SHA256
893f39c5423b6fa4fed2d5fca3ee0f20530375561263b040337050751fceb563
-
SHA512
dd17e52264bdaac45a251a0c58099bc6d93b3b29e781c6ac28c32ce382928b520e1c4d8224001cb13c41ad6a9a71f780d3d48014664a639a605ff42b06b3709c
-
SSDEEP
196608:NbKfIUFF5DWU3PR1oX76GUrv7rpx2rf55sE3/yhSRVFC62RiiZ7jIhJo4vCp4iJ:NGI2icXkOTrpo/s+MekiiZ7UHoM84a
Malware Config
Signatures
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
8adf51eb02663972dfa638ec72168ff921638888ab703989fed8ff59ea953adf.zip.zip
Password: infected
-
8adf51eb02663972dfa638ec72168ff921638888ab703989fed8ff59ea953adf.zip
-
EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/CORE10k.EXE
Headers
Sections
-
EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/EagleFiler-1.5.7.dmg
-
EagleFiler-1.5.7/.DS_Store
-
EagleFiler-1.5.7/.VolumeIcon.icns
-
EagleFiler-1.5.7/.gitignore
-
EagleFiler-1.5.7/.journal
-
EagleFiler-1.5.7/.journal_info_block
-
EagleFiler-1.5.7/EagleFiler Read Me.pdf
-
http://c-command.com/eaglefiler
-
http://growl.info
-
http://c-command.com/eaglefiler/manual-ah/importing
-
http://c-command.com/eaglefiler/manual-ah/capture-key
-
http://c-command.com/eaglefiler/manual-ah/
-
-
EagleFiler-1.5.7/EagleFiler.app/Contents/Info.plist
-
EagleFiler-1.5.7/EagleFiler.app/Contents/PkgInfo
-
EagleFiler-1.5.7/EagleFiler.app/Contents/_CodeSignature/CodeResources
-
EagleFiler-1.5.7/Icon :rsrc
-
EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/core.nfo
-
EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/core_keygen.dmg
-
CORE Keygen/.VolumeIcon.icns
-
CORE Keygen/.fseventsd/0000000000114e6a
-
0000000000114e6a
-
CORE Keygen/.fseventsd/fseventsd-uuid
-
CORE Keygen/CORE Keygen.app/Contents/Info.plist
-
CORE Keygen/CORE Keygen.app/Contents/MacOS/CORE Keygen
-
CORE Keygen/CORE Keygen.app/Contents/MacOS/libbassmod.dylib
-
CORE Keygen/CORE Keygen.app/Contents/PkgInfo
-
CORE Keygen/CORE Keygen.app/Contents/Resources/ButtonFillN.tiff
-
CORE Keygen/CORE Keygen.app/Contents/Resources/ButtonFillP.tiff
-
CORE Keygen/CORE Keygen.app/Contents/Resources/ButtonLeftN.tiff
-
CORE Keygen/CORE Keygen.app/Contents/Resources/ButtonLeftP.tiff
-
CORE Keygen/CORE Keygen.app/Contents/Resources/ButtonRightN.tiff
-
CORE Keygen/CORE Keygen.app/Contents/Resources/ButtonRightP.tiff
-
CORE Keygen/CORE Keygen.app/Contents/Resources/English.lproj/InfoPlist.strings
-
CORE Keygen/CORE Keygen.app/Contents/Resources/English.lproj/MainMenu.nib
-
CORE Keygen/CORE Keygen.app/Contents/Resources/SerialFieldBG.tif
-
CORE Keygen/CORE Keygen.app/Contents/Resources/SerialFieldBG_over.tif
-
CORE Keygen/CORE Keygen.app/Contents/Resources/bg.tif
-
CORE Keygen/CORE Keygen.app/Contents/Resources/exitButton.tif
-
CORE Keygen/CORE Keygen.app/Contents/Resources/icon.icns
-
CORE Keygen/CORE Keygen.app/Contents/Resources/music.mod
-
CORE Keygen/CORE Keygen.app/Contents/Resources/screw.tif
-
CORE Keygen/Icon :com.apple.TextEncoding
-
CORE Keygen/Icon :rsrc
-
EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/file_id.diz
-
__MACOSX/EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/._CORE10k.EXE
-
__MACOSX/EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/._EagleFiler-1.5.7.dmg
-
__MACOSX/EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/._core.nfo
-
__MACOSX/EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/._core_keygen.dmg
-
__MACOSX/EagleFiler.v1.5.7.MacOSX.Incl.Keymaker-CORE/._file_id.diz