Overview

overview

10

Static

static

10

93b1c1420e...99.exe

windows7-x64

9

93b1c1420e...99.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    93b1c1420e8dee6bde35545e181bdb354943b06f5976a167d303de77b6996d99.exe.compressed

  • Size

    99KB

  • MD5

    26a69d3a89da5f5625161873363de03e

  • SHA1

    de90ed0c7ea4191b169e35605d285f684856332a

  • SHA256

    179842fa4eb67681e2974d59d1a1417be297420bcc926702146765a08b49e959

  • SHA512

    9d9cff88485daba9e029266c3c39c5f9e938624b34991eec84d1262fc09fda6624e989501228097e86f2d967db01fd9875549832f40bc9cbda1011ba2b27addc

  • SSDEEP

    1536:YIj4Bd3EWHMD99Ulx/085d9TtMtPprWrOleG3bmo5elrkQOD+S0An:twEWHMDclx/95natxu/noekQOD

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • Detects executables containing many references to VEEAM. Observed in ransomware 1 IoCs
  • Detects executables referencing many IR and analysis tools 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 93b1c1420e8dee6bde35545e181bdb354943b06f5976a167d303de77b6996d99.exe.compressed
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections