General

  • Target

    8ae04f9524fd233fe1f6c3c11e76f29a.bin

  • Size

    460.8MB

  • MD5

    8ae04f9524fd233fe1f6c3c11e76f29a

  • SHA1

    70485b6061788b8f01e593663c52379652376a34

  • SHA256

    8ccc4fb0f1c4754b16bd9fd0ac917f097c6d1d718ec98418bf9eb13a5dfd514c

  • SHA512

    00caa4042d3a8e946b4edc890b07c97920aa88c0cce3edd186533d5ff3504f411ea5ff1db890fbca0afa793f89ffa9c6229c4c9cae352326b34a97ef20b92f04

  • SSDEEP

    12582912:7A8Y2eeTuobLSe5Ds6ph/1cTV9fQT08kXSfY2qLY:7BTbbeKsIWPXKh

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8ae04f9524fd233fe1f6c3c11e76f29a.bin
    .zip

    Password: infected

  • Changelog_ZAARC_v4.3.1.pdf
    .pdf

    Password: infected

  • ModulonDataServiceSetup_1.0.3.0.zip
    .zip

    Password: infected

  • ModulonDataServiceSetup_1.0.3.0.exe
    .exe windows:5 windows x86

    Password: infected

    4bbd4adfc99174f1d7d82430fab6116e


    Headers

    Imports

    Exports

    Sections

  • ModulonDataServiceSetup_1.0.3.0.msi
    .msi
  • Setup_ZAARC-FTS_v1.5.2.exe
    .exe windows:6 windows x86

    Password: infected

    4fda732de1b2293b2442d2996c840875


    Code Sign

    Headers

    Imports

    Sections

  • Setup_ZAARC_Dienste_v4.3.1.exe
    .exe windows:6 windows x86

    Password: infected

    7c194251e86188363a60c4bd78b0d506


    Code Sign

    Headers

    Imports

    Sections

  • Setup_ZAARC_KT_v4.3.1.exe
    .exe windows:6 windows x86

    Password: infected

    7c194251e86188363a60c4bd78b0d506


    Code Sign

    Headers

    Imports

    Sections

  • Setup_ZAARC_VPN_v4.3.1.exe
    .exe windows:6 windows x86

    Password: infected

    7c194251e86188363a60c4bd78b0d506


    Code Sign

    Headers

    Imports

    Sections

  • Setup_ZAARC_v4.3.1.exe
    .exe windows:6 windows x86

    Password: infected

    7c194251e86188363a60c4bd78b0d506


    Code Sign

    Headers

    Imports

    Sections

  • zamik32.key