General

  • Target

    40bae629ad50f908614883fdbcfa51b64cae580059475084cf7edfbdcb4e493c.zip.zip

  • Size

    13.6MB

  • MD5

    9190103f5d9042db9d4de7b726847482

  • SHA1

    abbc186e6b4b875736b7d81b9f1346238cf5e966

  • SHA256

    b3f86a4ba8d4fe20e4a017adc0fbb71183c18f56f946397b877a9bdef47b931e

  • SHA512

    2ac65ffa05a397ce92209447ba9a56cabd7604e2427b0c03d5882efcd0f7b27a784c6a6532804a83fff5da6e3e37dbb1b0658bea5f69ab93470668b6f98f7802

  • SSDEEP

    393216:z3CirWtr7Dkf1h34My6ptAYo1BWZdVqaWv80pj6DOnnJv4pLT:zyiStr7DW/vAV1BU7WvtjKU4

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 40bae629ad50f908614883fdbcfa51b64cae580059475084cf7edfbdcb4e493c.zip.zip
    .zip

    Password: infected

  • 40bae629ad50f908614883fdbcfa51b64cae580059475084cf7edfbdcb4e493c.zip
    .zip
  • abs!info.txt
  • bass.dll
    .dll windows:4 windows x86


    Headers

    Exports

    Sections

  • fmod.dl_
    .dll windows:4 windows x86


    Headers

    Exports

    Sections

  • outpost.exe
    .exe windows:4 windows x86


    Headers

    Sections

  • outpost.mp3
  • outpost.nfo