Overview

overview

3

Static

static

3

d_(4)/not_...64.exe

windows10-1703-x64

1

d_(4)/russ...id.txt

windows10-1703-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    d_(4).zip

  • Size

    27.4MB

  • MD5

    5ca1ebf5306cd3e2c85089f32ef89587

  • SHA1

    d1aa136636421054706ff38b23764366804ce9b3

  • SHA256

    46e0527a488f6cc3f763cf74b1296c39fd0e9d6d83ed3c129e72feff4c81b69f

  • SHA512

    e9d9225599b1c64e67efc9de50ccaaa5557317dc37e699925d1623e082f974419cf5cc6550c2b44fecb8616a3adf990099331c08c122b9334b68e5a954566361

  • SSDEEP

    786432:VKjM1Bb7vo8aMiDdjRbz3X8jAnG5cBrEGJFme2rU+mdaB10:VN1BbvaLn8jiFr7/2I+mO10

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • d_(4).zip
    .zip
  • d_(4)/not_russia/client_id.txt
  • d_(4)/not_russia/d_lin_arm
    .elf linux arm
  • d_(4)/not_russia/d_lin_x64
    .elf linux x64
  • d_(4)/not_russia/d_mac_arm64
    .macho macos arch:arm64
  • d_(4)/not_russia/d_mac_x64
    .macho macos arch:x64
  • d_(4)/not_russia/d_win_arm64.exe
  • d_(4)/not_russia/d_win_x64.exe
    .exe windows:6 windows x64 arch:x64

    4f2f006e2ecf7172ad368f8289dc96c1


    Headers

    Imports

    Sections

  • d_(4)/russia/client_id.txt
  • d_(4)/russia/d_lin_arm
    .elf linux arm
  • d_(4)/russia/d_lin_x64
    .elf linux x64
  • d_(4)/russia/d_mac_arm64
    .macho macos arch:arm64
  • d_(4)/russia/d_mac_x64
    .macho macos arch:x64
  • d_(4)/russia/d_win_arm64.exe
  • d_(4)/russia/d_win_x64.exe
    .exe windows:6 windows x64 arch:x64

    4f2f006e2ecf7172ad368f8289dc96c1


    Headers

    Imports

    Sections