Overview

overview

10

Static

static

10

24b65253f8...28.exe

windows7-x64

9

24b65253f8...28.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    24b65253f84d53a8bce85aeb00494e0fba2a1ffd6430c3e56e0eb0895f75fa28.exe.compressed

  • Size

    99KB

  • MD5

    4a823eed75cc342197e4f014cff10542

  • SHA1

    55aab01439f65e72cb2eecaa4da4b8784f7d63c3

  • SHA256

    3d21ae483db9fca421150aad1a45009d2ea525dcba01aad8ae06973b744256e7

  • SHA512

    2d9e58b979e2aab2cf7fa387608e5847425fd7b6e3e93eae77db016c62fc83eadd6d47e59fd678246c31e3d96f775f0abb8ad76616b27f2d8cfdee37df9ea92e

  • SSDEEP

    1536:dIj4Dwqo5BxJpVikqs8UVWXsc2VJVxsjlP+A2sEUR9ntv1WhdQKZAn:E57XlFWXjQJVGjlX2UR9tkU

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • Detects executables containing many references to VEEAM. Observed in ransomware 1 IoCs
  • Detects executables referencing many IR and analysis tools 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 24b65253f84d53a8bce85aeb00494e0fba2a1ffd6430c3e56e0eb0895f75fa28.exe.compressed
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections