General

  • Target

    f25bac7d622cd257c9668067e7499c0587e14f5c9719177df836c0778a420ee2.zip

  • Size

    1.7MB

  • MD5

    c290a8cb4b70192b10d4049ea66582e9

  • SHA1

    1f1e203728a9e10c1ce533d0dee11c13c2cbc824

  • SHA256

    d924bcab9753b9d20c025733801ecb72e0417e00bbfa91aeb32bc9f5037c5321

  • SHA512

    c91ab8c87aebc31cc9ed0d11608336ba30650b93462e91ec246c4babaca8ee8a9cdb662643c69baa5da14f077cd9735041f3c46466c27cc8b700e8e9a865d183

  • SSDEEP

    24576:XIsjG1P/9UsCI+25LYki13lmEeV9DfTdcwpwxSj0nffkxSKuAEYxgglb7M1kPom:Ysj0lR+0L/i1He7DfHcSMfClmgFim

Score
10/10

Malware Config

Signatures

  • Avaddon family
  • Avaddon payload 1 IoCs
  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f25bac7d622cd257c9668067e7499c0587e14f5c9719177df836c0778a420ee2.zip
    .zip

    Password: infected

  • f25bac7d622cd257c9668067e7499c0587e14f5c9719177df836c0778a420ee2.exe
    .exe windows:6 windows x86 arch:x86

    Password: infected


    Headers

    Sections