@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo
General
-
Target
1002a1bfbc7141c6d12b49317989726e31d79c63b95e970966e038ab85d8a436.zip.zip
-
Size
52.7MB
-
MD5
584ab9d58baab2f07b57ad5eab926ddd
-
SHA1
e0cda62c2ddb9ba2e48ae2c95605c958a223981d
-
SHA256
62f23e485a435479fa4928ccc6ddcfb91acbceba78eebb78dccb55174ff876c6
-
SHA512
a490f6f80eaeda4eae1a227b9986c02f8fb6f73d4d5c6f6f0c320d5ba04d6fe0bc2a307eb03bd35696d9c6050beef7f64686f3b02d7efd2073a2e1127728fe37
-
SSDEEP
1572864:O4ejRR3OXzFXCvM+xmGN8T9NnR+cOz5x8jHYD:NeN0zFYsgYOz5fD
Score
10/10
Malware Config
Signatures
-
Nirsoft 1 IoCs
-
UPX packed file 13 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 18 IoCs
Checks for missing Authenticode signature.
Files
-
1002a1bfbc7141c6d12b49317989726e31d79c63b95e970966e038ab85d8a436.zip.zip
Password: infected
-
1002a1bfbc7141c6d12b49317989726e31d79c63b95e970966e038ab85d8a436.zip
-
Hiren's.BootCD.7.4.iso
-
BootCD/Active.uha
-
BootCD/Aida.uha
-
BootCD/BiosBoot.uha
-
BootCD/DiskCmdr.uha
-
BootCD/Diskptch.uha
-
BootCD/DosBurn.uha
-
BootCD/DskMangr.uha
-
BootCD/FastLynx.uha
-
BootCD/HDDReg.uha
-
BootCD/HddTools.uha
-
BootCD/LapLink5.uha
-
BootCD/McAfee.uha
-
BootCD/Med_Tool.uha
-
BootCD/Mini98.uha
-
BootCD/PCDoctor.uha
-
BootCD/PCI32.uha
-
BootCD/PCcheck.uha
-
BootCD/PTD.uha
-
BootCD/PartCmdr.uha
-
BootCD/PartMngr.uha
-
BootCD/QuickVie.uha
-
BootCD/SavePart.uha
-
BootCD/Tools.uha
-
BootCD/Vdefs/HowTo.txt
-
BootCD/Win311.uha
-
BootCD/WinTools/Ad-Aware.uha
-
BootCD/WinTools/CurrPort.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/DTemp.att
-
BootCD/WinTools/DTemp.exe
Headers
Sections
-
out.upx
Headers
Exports
Sections
-
BootCD/WinTools/DrvImgXp.uha
-
BootCD/WinTools/DskSpeed.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/GhostExp.uha
-
BootCD/WinTools/HijackThis.exe
Headers
Sections
-
BootCD/WinTools/IBProcMan.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/Restorat.uha
-
BootCD/WinTools/SpaceMonger.exe
Headers
Sections
-
out.upx
Headers
Sections
-
BootCD/WinTools/StartupCPL.exe
Headers
Sections
-
BootCD/WinTools/StartupMonitor.exe
Headers
Sections
-
BootCD/WinTools/Undelete.exe
Headers
Sections
-
BootCD/WinTools/VolcovCommander.bat
-
BootCD/WinTools/ad-aware.bat
-
BootCD/WinTools/drvimgxp.bat
-
BootCD/WinTools/fprot.bat
-
BootCD/WinTools/ghostexp.bat
-
BootCD/WinTools/mcafee.bat
-
BootCD/WinTools/memTest.exe
Headers
Sections
-
BootCD/WinTools/pagedfrg.exe
Headers
Sections
-
BootCD/WinTools/pci32.bat
-
BootCD/WinTools/restoration.bat
-
BootCD/WinTools/snapshot.exe
Headers
Sections
-
BootCD/WinTools/splitjoin.exe
Headers
Sections
-
BootCD/WinTools/unknowndevices.bat
-
BootCD/adds.uha
-
BootCD/astra.uha
-
BootCD/atis.uha
-
BootCD/chntpw.uha
-
BootCD/dcc.uha
-
BootCD/easyRecv.uha
-
BootCD/fm.uha
-
BootCD/fprot.uha
-
BootCD/fw.uha
-
BootCD/ghost.uha
-
BootCD/ghstwalk.uha
-
BootCD/hwinfo.uha
-
BootCD/lost_fnd.uha
-
BootCD/mix.uha
-
BootCD/mpxplay.uha
-
BootCD/network.uha
-
BootCD/nortUTIL.uha
-
BootCD/nssi.uha
-
BootCD/ntfs.uha
-
BootCD/ntfs4dos.uha
-
BootCD/ntpwd.uha
-
BootCD/pRESIZER.uha
-
BootCD/pcconfig.uha
-
BootCD/pqdi.uha
-
BootCD/pqpm.uha
-
BootCD/sa.uha
-
BootCD/testdisk.uha
-
BootCD/ts.uha
-
BootCD/uharcd.exe
-
BootCD/vc.uha
-
Readme.txt
-
[BOOT]/Boot-1.44M.img
-
keyboard patch/Patch.bat
-
keyboard patch/Readme.txt
-
keyboard patch/keyb.dat
-
keyboard patch/keyb.sys