Overview

overview

7

Static

static

7

HEU KMS Ac...om.url

windows7-x64

1

HEU KMS Ac...om.url

windows10-2004-x64

1

Download L...om.url

windows7-x64

1

Download L...om.url

windows10-2004-x64

1

HEU_KMS_Ac....0.exe

windows7-x64

7

HEU_KMS_Ac....0.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a1e220a89f1b3bda87e5b229f25ca6fdc414f2b5b046734fc3d541aea88b9867

  • Size

    4.3MB

  • MD5

    002ef3133dcb43e9c83d308157767af6

  • SHA1

    1b61bd2e7e49c658d40323238debb04c52336354

  • SHA256

    a1e220a89f1b3bda87e5b229f25ca6fdc414f2b5b046734fc3d541aea88b9867

  • SHA512

    f04de8375b1d80f6604382c16f86d5692baa7c8e04f35992b46f383d6befaf10490204d835cc02c8070d246836e1d5021f3d4b4aa16b239abebeaf681bc25235

  • SSDEEP

    98304:/XqF2GXXMgA8U6lc4phwFTI/rxqzsxytpyGTVgNq6LOqewx:/6gGXXMR8U6C4EF0/wzjvyyVg8669wx

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • a1e220a89f1b3bda87e5b229f25ca6fdc414f2b5b046734fc3d541aea88b9867
    .zip
  • HEU KMS Activator v42.0.0 (Windows and MS Office Activator) {CracksHash}/Download Latest Cracks and Apps from CracksHash.com.url
    .url
  • HEU KMS Activator v42.0.0 (Windows and MS Office Activator) {CracksHash}/Downloaded from CracksHash.com.txt
  • HEU KMS Activator v42.0.0 (Windows and MS Office Activator) {CracksHash}/HEU_KMS/HEU_KMS_Activator_v42.0.0.crackshash.zip
    .zip
  • Download Latest Cracks and Apps from CracksHash.com.url
    .url
  • Downloaded from CracksHash.com.txt
  • HEU_KMS_Activator_42.0.0.exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • HEU KMS Activator v42.0.0 (Windows and MS Office Activator) {CracksHash}/Info!.txt