General

  • Target

    MyMalwareDatabase-main (1).zip

  • Size

    13.7MB

  • MD5

    b1d4b57a053e0d923453e4707b4d8281

  • SHA1

    b9c47f21d63493206a9e95d894bf10f7c12fe3b6

  • SHA256

    d9a8b6007b6a59cf3a03d2fe52fe0e9b5e718e4c74c15f788d8ee2132bd083ea

  • SHA512

    0cf50619faee2854f9bce04a26e9f6f991218d6853e486166614558a31b69d806e93b0a434c9328963ee365e8dd018333391ae8d1136817e5f65e0a0a1b4c9b7

  • SSDEEP

    393216:ohvzeeqJP1yxHXqAKt2OqRAwclWntNNGs31WT:oI9jyNbmdRbWtrUT

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 19 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • MyMalwareDatabase-main (1).zip
    .zip
  • MyMalwareDatabase-main/MyMalwareDatabase-main/Frog.exe
    .exe windows:4 windows x86 arch:x86

    4f67aeda01a0484282e8c59006b0b352


    Headers

    Imports

    Sections

  • $1/1337/Frog.exe
    .exe windows:4 windows x86 arch:x86

    b0ee5f3ba44c825e73d37304e54fc889


    Headers

    Imports

    Exports

    Sections

  • $1/1337/php5ts.dll
    .dll windows:5 windows x86 arch:x86

    aaf1492926158df000e59c70092d88e8


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/GonnaCry/GonnaCry.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/GonnaCry/READ ME FOR UR SAFETY.txt
  • MyMalwareDatabase-main/MyMalwareDatabase-main/Hydromatic (1).exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/Losange/Losange.exe
    .exe windows:6 windows x64 arch:x64

    d7ed481fea21e62dc0e8363362172e7c


    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/Monoxidex64.exe.vir
    .exe windows:5 windows x64 arch:x64

    a2f9cc400443004644952ac829162570


    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/NightMare/NightMare.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/NightMare/README.txt
  • MyMalwareDatabase-main/MyMalwareDatabase-main/NightMare/REGFuck.bat
  • MyMalwareDatabase-main/MyMalwareDatabase-main/NightMare/detect.png
    .png
  • MyMalwareDatabase-main/MyMalwareDatabase-main/NoEscape (1).exe
    .exe windows:6 windows x86 arch:x86

    f400a8c725e9bcee856360087d72fec3


    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/Protactinium (1).exe
    .exe windows:4 windows x86 arch:x86

    6bd8e1a28c91488a009d8b979c9d8140


    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/README
  • MyMalwareDatabase-main/MyMalwareDatabase-main/Saturn.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/Sulfoxide.rar
    .rar
  • Sulfoxide/READ.txt
  • Sulfoxide/Sulfoxide.exe
    .exe windows:4 windows x86 arch:x86

    392d0bc34c07050bdaeed40a719a8701


    Headers

    Imports

    Sections

  • Sulfoxide/Sulfoxide_fixes.exe
    .exe windows:4 windows x86 arch:x86

    2b76a3c08d4243d00768177c4da12211


    Headers

    Imports

    Sections

  • Sulfoxide/vcredist_x64.EXE
    .exe windows:5 windows x86 arch:x86

    0ebb3c09b06b1666d307952e824c8697


    Code Sign

    Headers

    Imports

    Sections

  • Sulfoxide/vcredist_x86.EXE
    .exe windows:5 windows x86 arch:x86

    0ebb3c09b06b1666d307952e824c8697


    Code Sign

    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/Tera Bonus.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/Theophyline.7z
    .7z
  • readme.txt
  • MyMalwareDatabase-main/MyMalwareDatabase-main/Win10.Update-kb8723467.msi.zip
    .zip

    Password: infected

  • Win10.Update-kb8723467.msi
    .msi
  • MyMalwareDatabase-main/MyMalwareDatabase-main/Win10.Update-kb8723467.msi/Win10.Update-kb8723467.msi
    .msi
  • MyMalwareDatabase-main/MyMalwareDatabase-main/Worm Locker2.0(ransomware).zip
    .zip
  • Automatic_converter_rff_to_mp4.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • README.txt
  • MyMalwareDatabase-main/MyMalwareDatabase-main/Worm Locker2.0(ransomware)/Automatic_converter_rff_to_mp4.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • MyMalwareDatabase-main/MyMalwareDatabase-main/Worm Locker2.0(ransomware)/README.txt
  • MyMalwareDatabase-main/MyMalwareDatabase-main/uff.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections