Loveware-master[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

Loveware-master.zip
Size

2.3MB
MD5

2250cc6cb21377042536843b2ab84ec8
SHA1

014c0740070f2e7f0f82fd19b818540abcc64d60
SHA256

aaf658e5a573d58899bd6219b7a1adb4eca722aebb920f612a105e3a72082eef
SHA512

a79ac039e9cab8dfc05b572a50cedeff6e0f4302e6c3c10983d50a7b3b2a46afe36372dc7701376545e603ef8602fcabb97756766714d7b785273df22c4401bb
SSDEEP

49152:LPGVkm9U4woQHPIqqiUeAJj6ZfvUn+FAV5EnoGVRbhEc446LV6j4P6G:LBMQoo8imJj6ZU+FAXEnjRbhE7VLV6jI

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/Loveware-master/Extras/CONVERTER/Bat_To_Exe_Converter.exe	upx
static1/unpack001/Loveware-master/Extras/CONVERTER/Bat_To_Exe_Converter_(x64).exe	upx

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Loveware-master/Extras/CONVERTER/Bat_To_Exe_Converter.exe
unpack001/Loveware-master/Extras/CONVERTER/Bat_To_Exe_Converter_(x64).exe
unpack001/Loveware-master/Loveware/FinalPayload/FinalPayload.exe

Files

Loveware-master.zip
.zip
Loveware-master/.github/ISSUE_TEMPLATE/bug_report.md
Loveware-master/.github/workflows/greetings.yml
Loveware-master/CODE_OF_CONDUCT.md
Loveware-master/CONTRIBUTING.md
Loveware-master/Extras/Banner.jpg
.jpg
Loveware-master/Extras/CONVERTER/Bat_To_Exe_Converter.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 648KB - Virtual size: 648KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 366KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Loveware-master/Extras/CONVERTER/Bat_To_Exe_Converter_(x64).exe
.exe windows:4 windows x64 arch:x64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

UPX0
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 699KB - Virtual size: 700KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 366KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Loveware-master/Extras/CONVERTER/settings.ini
Loveware-master/Extras/Footer.png
.png
Loveware-master/Extras/Loveware.ico
Loveware-master/Extras/Loveware.png
.png
Loveware-master/Extras/PayloadsWiki.png
.png
Loveware-master/Extras/SideBar.png
.png
Loveware-master/LICENSE
Loveware-master/Loveware/DOCUMENTATION.txt
Loveware-master/Loveware/FinalPayload/FinalPayload.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 61KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Loveware-master/Loveware/FinalPayload/README.txt
Loveware-master/Loveware/Loveware.bat
.bat .vbs
Loveware-master/Loveware/Loveware.code-workspace
Loveware-master/Loveware/Loveware.ico
Loveware-master/README.md
Loveware-master/_config.yml

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.1MB

UPX1 Size: 648KB - Virtual size: 648KB

.rsrc Size: 366KB - Virtual size: 368KB

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.3MB

UPX1 Size: 699KB - Virtual size: 700KB

.rsrc Size: 366KB - Virtual size: 368KB

Headers

File Characteristics

Sections

CODE Size: 73KB - Virtual size: 73KB

DATA Size: 61KB - Virtual size: 60KB

BSS Size: - Virtual size: 61KB

.idata Size: 3KB - Virtual size: 3KB

.tls Size: - Virtual size: 12B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 6KB - Virtual size: 6KB

.rsrc Size: 134KB - Virtual size: 134KB

UPX0
Size: - Virtual size: 1.1MB

UPX1
Size: 648KB - Virtual size: 648KB

.rsrc
Size: 366KB - Virtual size: 368KB

UPX0
Size: - Virtual size: 1.3MB

UPX1
Size: 699KB - Virtual size: 700KB

.rsrc
Size: 366KB - Virtual size: 368KB

CODE
Size: 73KB - Virtual size: 73KB

DATA
Size: 61KB - Virtual size: 60KB

BSS
Size: - Virtual size: 61KB

.idata
Size: 3KB - Virtual size: 3KB

.tls
Size: - Virtual size: 12B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 134KB - Virtual size: 134KB