General

  • Target

    2aebb904bdebcec6b0407c1e392a30dcd3bfc8e9e963983d4b60f66e0434c8be

  • Size

    160KB

  • MD5

    0b4a1f39c9a0de6d61c35cab8c74ec92

  • SHA1

    f1321498247ce7fec21aaec27e6ce1c0502fb9d8

  • SHA256

    2aebb904bdebcec6b0407c1e392a30dcd3bfc8e9e963983d4b60f66e0434c8be

  • SHA512

    2d5bfd38f1ec3f52295e434ed57e1747c399d08740c8092d136fa6774641276b1ea241c7af731c2ebe82d8bb34a706036df3953eb50bd6debccf8e9ebe358bd8

  • SSDEEP

    3072:lFB3O3IRORghwODMJlz1dxoOXwupfdYEA8i70zCK9F2JBJalT74ix:nBZcIDqvysbpfmyU0FFOUl/Bx

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2aebb904bdebcec6b0407c1e392a30dcd3bfc8e9e963983d4b60f66e0434c8be
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections