General

  • Target

    be34eda42c8114ff8acfb2fd126efe17672aaf603a2cc1129fe5f5a653e410e6

  • Size

    11.7MB

  • MD5

    b16b2553475fe57cc3e91360d5607d2a

  • SHA1

    c6443e6039b3c78dca789b809ed84b129daa7e05

  • SHA256

    be34eda42c8114ff8acfb2fd126efe17672aaf603a2cc1129fe5f5a653e410e6

  • SHA512

    2a898d07eb48dff4e14e535cc2776909a51c34e58ba9769e758390e1761a9b0bf6a7cce662b9eefb0b5061952f77d9ac1bc9bd0883c0b281def709e3e6eb354f

  • SSDEEP

    196608:LMI8GPFbLvwIsShW+/lrBU4e5qzArlQ0dvPHjJlDtHhJFyXNLw9g2K/7Xj3gcRhA:PVP1zRJ/nPzmWYT/DtheDvjpezslTG

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • be34eda42c8114ff8acfb2fd126efe17672aaf603a2cc1129fe5f5a653e410e6
    .zip
  • DLL注入器.exe
    .exe windows:5 windows x64 arch:x64


    Headers

    Sections

  • Leave开裂by小帅.dll
    .dll windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .dll windows:6 windows x64 arch:x64


    Headers

    Sections

  • 教程.png
    .png