General

  • Target

    e2557fcfd4eba3eb775f05183373c9fcdb015f2e3689abd42844bd5a353408de.zip.zip

  • Size

    1.8MB

  • MD5

    4728199dc1870dcbaea7bd4c72391d36

  • SHA1

    048e32044cb059a0426db4c3b7c4e4e93162ed0e

  • SHA256

    ca61eabbb93458e6eca85d8abf73a56f540fa4dbbfa436c04541cfdeeb2a7ae1

  • SHA512

    174177ec1c9eed0be1d90a084c158a19a022dc47639fb27e49b06d22924791d455de1236d74d9e1cc5b39c2f5ffb801851b473f38acfe44f23fa3a079d6a1d19

  • SSDEEP

    49152:wwp3F5Acv+gltr20HlaDK8Yiy+WPkkfeFLgZM:ww9dmglQKlaDK8Yiy+WPlf6V

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • e2557fcfd4eba3eb775f05183373c9fcdb015f2e3689abd42844bd5a353408de.zip.zip
    .zip

    Password: infected

  • e2557fcfd4eba3eb775f05183373c9fcdb015f2e3689abd42844bd5a353408de.zip
    .zip
  • Knoppicillin-Updater.exe
    .exe windows:4 windows x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86


    Headers

    Sections

  • gpl.txt
  • lizenz.txt