Overview

overview

10

Static

static

7

NUEVO FORM...16.exe

windows7-x64

10

NUEVO FORM...16.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NUEVO FORMULARIO DE PEDIDO 09-3880073016.uu

  • Size

    519KB

  • MD5

    7620362b4836fd3ac63c8af67d962afb

  • SHA1

    bb1da18bf0545554a61569cff1b76893cd94e7ba

  • SHA256

    4c0bdf2a6713ad274c9dbe4f24307a87cb71abe3d9068e792bf79943ed3e61e1

  • SHA512

    aae42a4907991db18e53cfb59870e4ad6917f3fadee50133b38084be33f4ca567cf047bcbb0e7a77e27e5fe0a11a68287e7069dab1719ee21dc1d24392ce6f7d

  • SSDEEP

    12288:N0GDXV+3v/45FiSAG930PTzFmw5Fl5nfJaXairzZMQIb7yhdu:N0iVX5FPAawzFtlIxyb7udu

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • NUEVO FORMULARIO DE PEDIDO 09-3880073016.uu
    .rar

    Password: infected

  • NUEVO FORMULARIO DE PEDIDO 09-3880073016.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections