General

  • Target

    1e66d672ef74c30de5850158ca37687aa28edff794e6300a9c86c1085f83b9a0

  • Size

    131.3MB

  • MD5

    e2660cb6a6bd50aa797e4207c6a180c9

  • SHA1

    ae9dd51791ec21218386f809f45342faaa723eee

  • SHA256

    1e66d672ef74c30de5850158ca37687aa28edff794e6300a9c86c1085f83b9a0

  • SHA512

    0cfec841f83be0f8d0be6c8731767d4640080b6d8aa303477b3210836e245b0053ae00f412357bbd8f1941ce999375f4b41df880cece05e6d7f4d9a5f21cd2ea

  • SSDEEP

    786432:ny/QyHIQunIAHj37Enk9s9x0G/EgnTp/lo7oZ4AzGpHjUoFmnTtLwSTRpf4P1wTo:y/hSq0cTp9ioZ4AzGNFK5vy9

Score
10/10

Malware Config

Signatures

  • Detect Ducktail Third Stage Payload 1 IoCs
  • Ducktail family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1e66d672ef74c30de5850158ca37687aa28edff794e6300a9c86c1085f83b9a0
    .exe windows:6 windows x86 arch:x86

    5faa4e2549a90b4b068a8d326d23ab61


    Headers

    Imports

    Exports

    Sections