Overview

overview

7

Static

static

7

bywg/Byz/Core.dll

windows7-x64

7

bywg/Byz/Core.dll

windows10-2004-x64

7

bywg/Byz/bywg.exe

windows7-x64

7

bywg/Byz/bywg.exe

windows10-2004-x64

7

bywg/Byz/liudu.dll

windows7-x64

7

bywg/Byz/liudu.dll

windows10-2004-x64

7

ٷվ.url

windows7-x64

1

ٷվ.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    15899b72ce337c1a82e16852f53abd27

  • Size

    773KB

  • MD5

    15899b72ce337c1a82e16852f53abd27

  • SHA1

    c3c6f04e6c8615bd3404f4c72ebb2c123cc447f9

  • SHA256

    0d47c4bfab20a39fe9c409d5f1c559e111ca93d9fb0563442451884f5a5ed8f1

  • SHA512

    07d4bdf5cd3f37da3cbc0dc7852fb5c7fbb35524ee6190f0cb15f91ac9ea6576559d8b39884db1c32d66eeb2b03f81089105ebfd7a2cf582c431c5fe591e1643

  • SSDEEP

    24576:R/R4fKdPIGqzQ8XVhU3HKuGh8WUDMo8Wn3:VR4eVT8f3CWPWn3

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 2 IoCs

    Detects file using ACProtect software.

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 15899b72ce337c1a82e16852f53abd27
    .zip
  • bywg/Byz/Core.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • bywg/Byz/bywg.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • bywg/Byz/liudu.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • ʹ˵.txt
  • ٷվ.url