Overview

overview

10

Static

static

10

38988bc32d...48.exe

windows7-x64

9

38988bc32d...48.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    38988bc32dbdc8d4ca5689207774ae78b53c2cfb4402d7b09d64a95b03103f48

  • Size

    99KB

  • MD5

    8bbb57cea184e26bfa40b017ecc5e783

  • SHA1

    5f53f6a6d2f02f129ff7676df4b5dfc15552a04c

  • SHA256

    38988bc32dbdc8d4ca5689207774ae78b53c2cfb4402d7b09d64a95b03103f48

  • SHA512

    8d9f666bc8a03ae8faa8f382b6eea073d893ece4ad41952a483b653440f1cadd8799da1865549b88f84ef778158930875f9a81fda45634aebb920fe09a9e7db3

  • SSDEEP

    1536:8Ij4YMkYfu+snbiqBKVkcH2/W3KSjY3rIjXFh5aYqBiQnecwIcx5Boe5fhln:ZjM1qbWB3KSjiI/MBtUxNhh

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • Detects executables containing many references to VEEAM. Observed in ransomware 1 IoCs
  • Detects executables referencing many IR and analysis tools 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 38988bc32dbdc8d4ca5689207774ae78b53c2cfb4402d7b09d64a95b03103f48
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections