Overview

overview

7

Static

static

7

About.dll

windows7-x64

7

About.dll

windows10-2004-x64

7

Magic.exe

windows7-x64

7

Magic.exe

windows10-2004-x64

7

magic.chm

windows7-x64

1

magic.chm

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    50c63db59b0fd4299e0ae5009c3568fe

  • Size

    150KB

  • MD5

    50c63db59b0fd4299e0ae5009c3568fe

  • SHA1

    60a0ed4c071a6d650bab66def01cb691216d6d78

  • SHA256

    36f6211310c75390f19a6b87b54f5dc4ea2e3bcb14a20ebb3e975ab8fe37fb2f

  • SHA512

    2a3dce93228d658bbcf213b4d58943b6e1fcceff31615f1b767879f38eb8902e0ebf58aaa77aa881860a93d8beb18eb4ac95f2fb5fd93f166d54372de3685be8

  • SSDEEP

    3072:JOF9d3FGEIRwxd+HHKn28DBaDcnvVrWxLp1lfOtKy5XKZ:EpFDsukk5BomWpp1lgjO

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 50c63db59b0fd4299e0ae5009c3568fe
    .rar
  • About.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • CHANGES.txt
  • COPYING.txt
  • CREDITS.txt
  • Magic.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • blacklst.txt
  • magic.chm
    .chm
  • sample.magic
  • 下载说明.htm
    .html .js polyglot