Overview

overview

10

Static

static

3

Windows_Up...xe.vbs

windows7-x64

1

Windows_Up...xe.vbs

windows10-2004-x64

1

file.ps1

windows7-x64

1

file.ps1

windows10-2004-x64

1

fresh.exe

windows7-x64

10

fresh.exe

windows10-2004-x64

10

loader.ps1

windows7-x64

1

loader.ps1

windows10-2004-x64

10

payload.ps1

windows7-x64

1

payload.ps1

windows10-2004-x64

10

update.cmd

windows7-x64

1

update.cmd

windows10-2004-x64

10

update.vbs

windows7-x64

8

update.vbs

windows10-2004-x64

10

windows.cmd

windows7-x64

1

windows.cmd

windows10-2004-x64

10

windows.vbs

windows7-x64

3

windows.vbs

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    async.rar

  • Size

    9.0MB

  • MD5

    d5b1c0b6217a8fbd771cfbbfbdc3de54

  • SHA1

    1d7bf7c1b7c45223e594a01a484a9d6fff7e8ab2

  • SHA256

    f0e5b0472df1921c5b9c32c0dc4c1a3a2cc15084b72df00fe2710f63221ee224

  • SHA512

    864fc486941aece16b7ea2ba960bb396d1bc34a9b1ae33e0fe15f2b659027f39d85035118c8db2c202e809bffac966e3322996c4590d57c7487a93f0a14c8a56

  • SSDEEP

    196608:Zgh+EnedA/Cpz1jVzHUEKGOpg5mAzdwlt/AcV9iz46mlvrISa4oRtqRbnypOh5Mj:Khvedj7VjUvA5rSkzym4csyp3JbZ3Nqk

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • async.rar
    .rar
  • Windows_Update.exe.bin
    .vbs
  • file.ps1
    .ps1
  • fresh.zip
    .zip
  • fresh.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • loader.ps1
    .ps1
  • payload.ps1
    .ps1
  • update.cmd
  • update.vbs
    .vbs
  • windows.cmd
    .cmd .vbs
  • windows.vbs
    .vbs