Overview

overview

7

Static

static

7

C/ProgramD...48.exe

windows7-x64

7

C/ProgramD...48.exe

windows10-1703-x64

7

out.exe

windows7-x64

out.exe

windows10-1703-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6316518071cf05227e7f74a3bc39421694b6cc5bb552bab87c82e47c4aad6a48.zip

  • Size

    229KB

  • MD5

    ddf7f0eec7a0f4ff11a3e4c903620ce9

  • SHA1

    9c4591cbeb61b378ba228b8c83eaf05e6bb1019a

  • SHA256

    9b6b214288e9dccd5b2f91e6999cb6767919c5b9ee5ae277d1d2ee89fa610025

  • SHA512

    15e62edae6e2023d906d25ca9a19b4463caa546b2b27c6f1f2ac872063a272d0fc260624131bff3626e379fd194eb42c111aa55a08109c2a2bb9dd1430a4d24b

  • SSDEEP

    6144:Iplj355kRkILTsbA+WSzXf7e3DlWoLXl91F009pSgJv:IjJ5kzEBWCf7eZWon40ffJ

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 6316518071cf05227e7f74a3bc39421694b6cc5bb552bab87c82e47c4aad6a48.zip
    .zip

    Password: S1BinaryVault

  • C/ProgramData/Sentinel/AFUCache/6316518071cf05227e7f74a3bc39421694b6cc5bb552bab87c82e47c4aad6a48
    .exe windows:4 windows x86 arch:x86

    Password: S1BinaryVault


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • manifest.json