Overview

overview

8

Static

static

3

severe_1/s...ns.txt

windows10-1703-x64

1

severe_1/s...ns.txt

windows11-21h2-x64

3

severe_1/s...ld.dll

windows10-1703-x64

1

severe_1/s...ld.dll

windows11-21h2-x64

severe_1/s...ap.exe

windows10-1703-x64

8

severe_1/s...ap.exe

windows11-21h2-x64

8

severe_1/s...re.exe

windows10-1703-x64

1

severe_1/s...re.exe

windows11-21h2-x64

6

severe_1/s...s!.rtf

windows10-1703-x64

1

severe_1/s...s!.rtf

windows11-21h2-x64

1

severe_1/s...of.exe

windows10-1703-x64

1

severe_1/s...of.exe

windows11-21h2-x64

1

severe_1/s...s!.rtf

windows10-1703-x64

1

severe_1/s...s!.rtf

windows11-21h2-x64

1

severe_1/s...er.exe

windows10-1703-x64

1

severe_1/s...er.exe

windows11-21h2-x64

1

severe_1/s...er.exe

windows10-1703-x64

1

severe_1/s...er.exe

windows11-21h2-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    serv.zip

  • Size

    3.3MB

  • MD5

    1926f6e73c07f7d1c20663b8dcd5bfc2

  • SHA1

    b138620736d0be56cfc482cf0215e642dbfe6c6a

  • SHA256

    fff71b70310cac2460f312ba97dce43aef7a7d0851d4955e332fc895d680a390

  • SHA512

    2742e2a1551925ed9fd32d239b48820a21b5c234282f4ddee0ab9c180483cc02e3f41267de404b000988b5947451d554b9c88b3a4b01e56492d8fd27ac899a5f

  • SSDEEP

    98304:Kq3a5jjEPjKsYiBg8E7u/Q8ltmiGfbIPbcl6XJ4VsJZu:u5MKCgt6jtmBKr4V7

Score
3/10

Malware Config

Signatures

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • serv.zip
    .zip
  • severe_1/severe/Instructions.txt
    .rtf .txt
  • severe_1/severe/Updater.deps.json
  • severe_1/severe/Updater.runtimeconfig.json
  • severe_1/severe/account.txt
  • severe_1/severe/dependencies/build.dll
    .dll windows:6 windows x64 arch:x64

    995f3ac127cfaa701f980f3483e78c46


    Headers

    Imports

    Sections

  • severe_1/severe/imgui.ini
  • severe_1/severe/md._syn/map.exe
    .exe windows:6 windows x64 arch:x64

    1ea9a34bd0ab4ef7bd83ffa95fec1c9c


    Headers

    Imports

    Sections

  • severe_1/severe/software.exe
    .exe windows:6 windows x64 arch:x64

    714c63bee0f5dd006be1ad781cd1d32f


    Headers

    Imports

    Sections

  • severe_1/severe/spoof/roblox not opening, read this!.rtf
    .rtf
  • severe_1/severe/spoof/spoof.exe
    .exe windows:5 windows x64 arch:x64

    d785b34347fd49d2db0e5be38b607572


    Code Sign

    Headers

    Imports

    Sections

  • severe_1/severe/spoof/~$blox not opening, read this!.rtf
  • severe_1/severe/updater.dll
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • severe_1/severe/updater.exe
    .exe windows:6 windows x64 arch:x64

    6dbf27f4c70fe2c8ed3e0122ba75d641


    Headers

    Imports

    Sections

  • severe_1/severe/updater.pdb