Overview

overview

10

Static

static

10

a8756f9a10...b9.exe

windows7-x64

9

a8756f9a10...b9.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    a8756f9a107fcdef34d5d8c2c14c88e71d2aa260b1a3f880db11ac78db91f2b9.exe.compressed

  • Size

    99KB

  • MD5

    7ce7b545a0502e2c6bbbf0c8f0c57ecb

  • SHA1

    5630e28db5b981acf07d8e21efa3937817d99763

  • SHA256

    2b53a037170f8461fa17d0d851db67b4c295a2d50bb80458e92feded9b3f6abf

  • SHA512

    5d39d7e76c2387e8126c9a3f545c617608d35ea9e763d88c9543215d9f1a2220f6db47d36613cfe65a5849933038ca8e5956b9a007aa91340fc43c87d9f8423c

  • SSDEEP

    1536:iIj4m4GFLJoKTkTqRhM0rDLrLUJhF/5zGZ3eWPujplO178vTPjJ5bHYMwaq5WLn:vg0Jo8kqh2x4herb7PjjrY8

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • Detects executables containing many references to VEEAM. Observed in ransomware 1 IoCs
  • Detects executables referencing many IR and analysis tools 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • a8756f9a107fcdef34d5d8c2c14c88e71d2aa260b1a3f880db11ac78db91f2b9.exe.compressed
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections