General

  • Target

    7eb00b7ad3e74699e097811a26612aec.bin

  • Size

    1.0MB

  • MD5

    7eb00b7ad3e74699e097811a26612aec

  • SHA1

    ded78bff1f55b9d93a450d9bfd6bae61b9894ef9

  • SHA256

    92567bcd3b474633dc4b821c7a7b1c294a1a74f8dc8ae1ebb71199ee06cc87eb

  • SHA512

    0a7181b300b1d9df84b0ef6c229c19eeba0602141ed1df2277020e914aedb36cae7ffd31446399889732b6f565f7fd4b21abf7a88e07f548b4d99b981e344fbd

  • SSDEEP

    24576:d6rDK9MEjp68XMEbJbrbKSLhf2mI6H1jGY8xq5vxfF:KmthVbJbrxh5jHQY8xq55fF

Score
7/10

Malware Config

Signatures

  • Obfuscated with Agile.Net obfuscator 1 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 7eb00b7ad3e74699e097811a26612aec.bin
    .zip

    Password: infected

  • Bat2Exe/Bat2Exe.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Bat2Exe/Guna.UI2.dll
    .dll windows:4 windows x86 arch:x86

    Password: infected

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Bat2Exe/Log/info.txt
  • Bat2Exe/Log/log.txt
  • Bat2Exe/NDesk.Options.dll
    .dll windows:4 windows x86 arch:x86

    Password: infected

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Bat2Exe/Output/info.txt
  • Bat2Exe/Source/info.txt
  • Bat2Exe/bytepress.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Bat2Exe/bytepress.lib.dll
    .dll windows:4 windows x86 arch:x86

    Password: infected

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Bat2Exe/hi.bat
  • Bat2Exe/readme.txt