General

  • Target

    70e57ae80536756c6c5ea5dbfc94de82848cf0965c3756fea8bbbaf43ba75ea0.exe.compressed

  • Size

    160KB

  • MD5

    f9fac891b9d48a5f9ada0081ac235a55

  • SHA1

    2cff55abfef306c08a89a9873a4c247b3789578f

  • SHA256

    e8e2ff69bdb597d4b024d40b3490987a32c19199234d7a8d9827beba3e379130

  • SHA512

    6fa853201d261eed9d4bd194bef49c0a2e142079d5f342652725f9a9799d43e0da8ca9d698148c87be50bb63c4c0d3c830d33836229cb22c306f9729ff828cdd

  • SSDEEP

    3072:FFB3O3IRORghwODMJlz1dxoOXwupfDwIFIKmk/w3JgBhqkLZiufFCL:HBZcIDqvysbpfsVKB3qK+

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 70e57ae80536756c6c5ea5dbfc94de82848cf0965c3756fea8bbbaf43ba75ea0.exe.compressed
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections