General

  • Target

    kys.rar

  • Size

    1.4MB

  • MD5

    fc8fccfa89094906cbd20f94794b89d4

  • SHA1

    b39f772bf2f6c79d81d8631d944320d7021c5711

  • SHA256

    98f0a95b821db0ee09af459cadefd860d332f635ea6021f148709fbbf78cc1bc

  • SHA512

    4f55d493a8488b017907b8029d04f7778f6ca9b9ed472cd96aad812809eabe75bca63916a4decc3d6d863337dcbbe72b46c927975bfce8b485a2e5874b03febf

  • SSDEEP

    24576:D+xsnXMlxw0Y6IOA1FTVeK0v3YLw+SHD+27pTEScwof3sqh3SY88nOKhR7AQtx:6GnXI/Y6IOEFTVjFw+SHa27pT7cHrSYr

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • kys.rar
    .rar
  • 1.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 2.exe
    .exe windows:5 windows x86 arch:x86

    a4532256d4940e3b78236677a0df71f4


    Headers

    Imports

    Sections

  • 2004_akt.scr
    .exe windows:5 windows x86 arch:x86

    25d250bb0b37b2d256b9bd4682dcd668


    Headers

    Imports

    Sections

  • 3.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections