General

  • Target

    56b4e6a2a43fbe44f42dfe4d4b99dabab19e7fc1ceda6fd7d45d4f3872589eca

  • Size

    160KB

  • MD5

    132e9fbc07a83ebae010efef91a8e6df

  • SHA1

    02cbe72a45de43591de7f601f1a8c6b1c455ddfa

  • SHA256

    56b4e6a2a43fbe44f42dfe4d4b99dabab19e7fc1ceda6fd7d45d4f3872589eca

  • SHA512

    399256bcc91abd13ef16cbdfe05edeb348c1e56ea651963c26c8bc19de8260613c9f43cdf3715d1900132af4b0b633fcb451d422f6eea330d533150b749a611f

  • SSDEEP

    3072:0FB3O3IRORghwODMJlz1dxoOXwupfVwIz6I72qUDIPMQsmMVt+HbW8:SBZcIDqvysbpfqMgLfTi

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 56b4e6a2a43fbe44f42dfe4d4b99dabab19e7fc1ceda6fd7d45d4f3872589eca
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections