General

  • Target

    549793a5ca705356a55971d935dc1621f27249428f1a40ae1c3a0afa0b823420

  • Size

    163KB

  • MD5

    40ce4c20a3b093c13316f299d1a6e8b1

  • SHA1

    f7f088de0088cf2fa34efb89e40f8b7af8d63933

  • SHA256

    549793a5ca705356a55971d935dc1621f27249428f1a40ae1c3a0afa0b823420

  • SHA512

    8e394a04f6ddc2fd063bbfe8efe4a06d0a93806cf2b6b6ae58c26931248c181de1bd3615487f2c63c4849b1d9a1dbc9aeca4451373d53ddae198b2a60a016a09

  • SSDEEP

    1536:PDgkZn8fAT/rY+tv1skfvRD8lProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:7gkCWjY8v11fvV8ltOrWKDBr+yJb

Score
10/10

Malware Config

Signatures

  • Detects executables built or packed with MPress PE compressor 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 549793a5ca705356a55971d935dc1621f27249428f1a40ae1c3a0afa0b823420
    .exe windows:1 windows x86 arch:x86

    c2a87fabf96470db507b2e6b43bd92eb


    Headers

    Imports

    Sections