Overview

overview

10

Static

static

10

07a139a225...1f.exe

windows7-x64

9

07a139a225...1f.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    07a139a225d8716405b6584be3109fd565fe67b5a92ba8abb25780058d5ed71f.exe.compressed

  • Size

    99KB

  • MD5

    d5d642784e914aff695e0c59b0ac3242

  • SHA1

    2910a8ab28f932327dd3bba83738d9e34fe00f7a

  • SHA256

    42d07b3cd3fe5f91b0218d8d007e771e108fb33c655dccd8eaa7ca27bb26ee68

  • SHA512

    c5814c2ce390859646292da144f687e5c7cba01d3ed2c40a4af4164eb8263edcdc91e8650657f7052ee1d2c54fde9a4ad5010cd60abb175babe3ee046443b478

  • SSDEEP

    1536:dIj4tEWHMD99Ulx/085d9TtMtPprWrOleG3bmo5elrkQOD+S0gn:E+EWHMDclx/95natxu/noekQOD

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • Detects executables containing many references to VEEAM. Observed in ransomware 1 IoCs
  • Detects executables referencing many IR and analysis tools 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 07a139a225d8716405b6584be3109fd565fe67b5a92ba8abb25780058d5ed71f.exe.compressed
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections