@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo
General
-
Target
f8d941b8573b312db606592a8192c5086fa85c0e50bcfae9a7f2601a784cfd71.zip.zip
-
Size
46.3MB
-
MD5
9898d2f020f4a476fd6914adb3f943ef
-
SHA1
91abd55716251e69f00870a085c7722904bece9f
-
SHA256
11a3c7160ccbf53d799daf7b8f25434688d656b6b591efce27ba294f1ace4f6d
-
SHA512
7dd5ee8c573e8a51a94b0804de48c1e00433584d3ded148eeb9af68ab90a1fa81972653f97f001232c33953ab8af3e7585ac792c4cee476e566213bb324b95df
-
SSDEEP
786432:muFoGFzeIFrGVGprK6+n7iqhQwXbGwBgae/xjj4Z15Qz4c8UCaqlkamgGXvx7+Mq:m0oQiIFCKA7HhprngVxjjq3q4cidu2GS
Score
7/10
Malware Config
Signatures
-
UPX packed file 12 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 17 IoCs
Checks for missing Authenticode signature.
Files
-
f8d941b8573b312db606592a8192c5086fa85c0e50bcfae9a7f2601a784cfd71.zip.zip
Password: infected
-
f8d941b8573b312db606592a8192c5086fa85c0e50bcfae9a7f2601a784cfd71.zip
-
Hiren's.BootCD.7.3.iso
-
BootCD/Active.uha
-
BootCD/Aida.uha
-
BootCD/BiosBoot.uha
-
BootCD/DiskCmdr.uha
-
BootCD/Diskptch.uha
-
BootCD/DosBurn.uha
-
BootCD/DskMangr.uha
-
BootCD/FastLynx.uha
-
BootCD/HDDReg.uha
-
BootCD/HddTools.uha
-
BootCD/LapLink5.uha
-
BootCD/Med_Tool.uha
-
BootCD/Mini98.uha
-
BootCD/PCDoctor.uha
-
BootCD/PCI32.uha
-
BootCD/PCcheck.uha
-
BootCD/PTD.uha
-
BootCD/PartCmdr.uha
-
BootCD/PartMngr.uha
-
BootCD/QuickVie.uha
-
BootCD/SavePart.uha
-
BootCD/Tools.uha
-
BootCD/Vdefs/HowTo.txt
-
BootCD/Win311.uha
-
BootCD/WinTools/Ad-Aware.uha
-
BootCD/WinTools/DTemp.att
-
BootCD/WinTools/DTemp.exe
Headers
Sections
-
out.upx
Headers
Exports
Sections
-
BootCD/WinTools/DrvImgXp.uha
-
BootCD/WinTools/DskSpeed.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/GhostExp.uha
-
BootCD/WinTools/HijackThis.exe
Headers
Sections
-
BootCD/WinTools/IBProcMan.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/Restorat.uha
-
BootCD/WinTools/SpaceMonger.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/StartupCPL.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/StartupMonitor.exe
Headers
Sections
-
BootCD/WinTools/Tcpview.exe
Headers
Sections
-
BootCD/WinTools/Undelete.exe
Headers
Sections
-
BootCD/WinTools/ad-aware.bat
-
BootCD/WinTools/drvimgxp.bat
-
BootCD/WinTools/ghostexp.bat
-
BootCD/WinTools/memTest.exe
Headers
Sections
-
BootCD/WinTools/pagedfrg.exe
Headers
Sections
-
BootCD/WinTools/pci32.bat
-
BootCD/WinTools/restoration.bat
-
BootCD/WinTools/splitjoin.exe
Headers
Sections
-
BootCD/WinTools/unknowndevices.bat
-
BootCD/astra.uha
-
BootCD/chntpw.uha
-
BootCD/dcc.uha
-
BootCD/easyRecv.uha
-
BootCD/fm.uha
-
BootCD/fprot.uha
-
BootCD/fw.uha
-
BootCD/ghost.uha
-
BootCD/hwinfo.uha
-
BootCD/lost_fnd.uha
-
BootCD/mcafee.uha
-
BootCD/mix.uha
-
BootCD/mpxplay.uha
-
BootCD/network.uha
-
BootCD/nortUTIL.uha
-
BootCD/nssi.uha
-
BootCD/ntfs.uha
-
BootCD/ntfs4dos.uha
-
BootCD/ntpwd.uha
-
BootCD/pRESIZER.uha
-
BootCD/pcconfig.uha
-
BootCD/pqdi.uha
-
BootCD/pqpm.uha
-
BootCD/sa.uha
-
BootCD/testdisk.uha
-
BootCD/ts.uha
-
BootCD/uharcd.exe
-
BootCD/vc.uha
-
Readme.txt
-
[BOOT]/Boot-1.44M.img
-
keyboard patch/Patch.bat
-
keyboard patch/Readme.txt
-
keyboard patch/keyb.dat
-
keyboard patch/keyb.sys