Overview

overview

10

Static

static

10

ae3db6e1b5...1c.exe

windows7-x64

9

ae3db6e1b5...1c.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ae3db6e1b5eba4b710925cede17043ab305e87dc55454331ee3e981a64e26e1c.exe.compressed

  • Size

    99KB

  • MD5

    cbdda5ac8ebfd4395ead61ea3fdcf8f0

  • SHA1

    f6683e04bad843de62b3a7914d8c85bb77a263d3

  • SHA256

    c0a9d5b1682ac93500a5a17079c387305d7912ad84aa12bffcadea8e7537a3eb

  • SHA512

    7891d8df3f8980fd19b443ae27d65c61412c77ee6c518d80ccef8405270e72825143db72e29e6d49d8eb07987c0dcaaef0a7a33a2455e42157eba09075f0ec64

  • SSDEEP

    1536:5Ij4xT/MAim2szHhIv49A08qIPPgBvlmYkw7OOlhIWGYkb+EC3LZ9m7nDofS9Z1s:oCbvimVzHCfqL1l57hsvYkyEooDgS

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • Detects executables containing many references to VEEAM. Observed in ransomware 1 IoCs
  • Detects executables referencing many IR and analysis tools 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • ae3db6e1b5eba4b710925cede17043ab305e87dc55454331ee3e981a64e26e1c.exe.compressed
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections