General

  • Target

    4a29b0f61b09b0e5f6736021f3fddde78737f8bd24afbb61fbb67999a09ebc7f.zip

  • Size

    2.3MB

  • MD5

    29da404e0c3703b0cba18f35dec1241c

  • SHA1

    ceb1145ad4eb35493a0a51afb2c45b63308019c3

  • SHA256

    cdc1f293d69f218909e5c8e9a905488c08e20f7e8678b845d8ff617b6dcc0b53

  • SHA512

    cdda5d84ecd3e23439d6fce27ce7ec789dc69c9c34dc01343612565c374ef7ddea54ccc9205c6b62eedd44983c17c4732209a023720471a0c557122edc0d2f4d

  • SSDEEP

    49152:RS49xv0nQmuXmQ6h/CIBrp/Ts1BjdmNzpVHexHYSwyhV3:RS4jtXmQ6h/CAVA/dIz+xpV3

Score
10/10

Malware Config

Signatures

  • Avaddon family
  • Avaddon payload 1 IoCs
  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4a29b0f61b09b0e5f6736021f3fddde78737f8bd24afbb61fbb67999a09ebc7f.zip
    .zip

    Password: infected

  • 4a29b0f61b09b0e5f6736021f3fddde78737f8bd24afbb61fbb67999a09ebc7f.exe
    .exe windows:6 windows x86 arch:x86

    Password: infected


    Headers

    Sections