Overview

overview

3

Static

static

3

COVAULT-19...s.json

windows7-x64

3

COVAULT-19...s.json

windows10-2004-x64

3

COVAULT-19...19.exe

windows7-x64

1

COVAULT-19...19.exe

windows10-2004-x64

1

COVAULT-19...19.exe

windows7-x64

1

COVAULT-19...19.exe

windows10-2004-x64

1

COVAULT-19...19.pdb

windows7-x64

3

COVAULT-19...19.pdb

windows10-2004-x64

3

COVAULT-19...v.json

windows7-x64

3

COVAULT-19...v.json

windows10-2004-x64

3

COVAULT-19...g.json

windows7-x64

3

COVAULT-19...g.json

windows10-2004-x64

3

COVAULT-19...ry.dll

windows7-x64

1

COVAULT-19...ry.dll

windows10-2004-x64

1

COVAULT-19...on.dll

windows7-x64

1

COVAULT-19...on.dll

windows10-2004-x64

1

COVAULT-19...og.dll

windows7-x64

1

COVAULT-19...og.dll

windows10-2004-x64

1

COVAULT-19...ol.dll

windows7-x64

1

COVAULT-19...ol.dll

windows10-2004-x64

1

COVAULT-19...ws.dll

windows7-x64

1

COVAULT-19...ws.dll

windows10-2004-x64

1

COVAULT-19...er.dll

windows7-x64

1

COVAULT-19...er.dll

windows10-2004-x64

1

COVAULT-19...er.dll

windows7-x64

1

COVAULT-19...er.dll

windows10-2004-x64

1

COVAULT-19...ws.dll

windows7-x64

1

COVAULT-19...ws.dll

windows10-2004-x64

1

COVAULT-19...og.dll

windows7-x64

1

COVAULT-19...og.dll

windows10-2004-x64

1

COVAULT-19...ol.dll

windows7-x64

1

COVAULT-19...ol.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    COVAULT-19_server_4.zip

  • Size

    1.6MB

  • MD5

    78270b791677da9f8551981ac2133474

  • SHA1

    779e48b14c595d280c9fdaca22c2d5dc741d1b4f

  • SHA256

    d0200960720f50b4215d408883809c6391989366721c6ce73a3377818fcafe1a

  • SHA512

    76ceb2bb83829533c8e8cb2d237f13be95eb8e255e2d2d89fe0ebdb16b85bad31d3499ee259401b3c1f9352405a200ddf4179e03d2761f63ab3710df917633df

  • SSDEEP

    49152:rT3qIzkaR5AFMSHML6kn+rPGI+1VnX0L2VB5rysv2I:r2V7cL6tbGI+1VX0CVB5ry01

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • COVAULT-19_server_4.zip
    .zip
  • COVAULT-19 (server)/COVAULT-19.deps.json
  • COVAULT-19 (server)/COVAULT-19.dll
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • COVAULT-19 (server)/COVAULT-19.exe
    .exe windows:6 windows x64 arch:x64

    7d19699275e08b389d5869dc7132efbc


    Headers

    Imports

    Sections

  • COVAULT-19 (server)/COVAULT-19.pdb
  • COVAULT-19 (server)/COVAULT-19.runtimeconfig.dev.json
  • COVAULT-19 (server)/COVAULT-19.runtimeconfig.json
  • COVAULT-19 (server)/Microsoft.Win32.Registry.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/System.Diagnostics.EventLog.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/System.Security.AccessControl.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/System.Security.Principal.Windows.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/System.ServiceProcess.ServiceController.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/WindowsFirewallHelper.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • COVAULT-19 (server)/runtimes/unix/lib/netcoreapp2.1/System.Security.Principal.Windows.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/runtimes/win/lib/netcoreapp2.0/System.Diagnostics.EventLog.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/runtimes/win/lib/netcoreapp2.0/System.Security.AccessControl.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/runtimes/win/lib/netcoreapp2.1/System.Security.Principal.Windows.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/runtimes/win/lib/netstandard2.0/Microsoft.Win32.Registry.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/runtimes/win/lib/netstandard2.0/System.ServiceProcess.ServiceController.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • COVAULT-19 (server)/websocket-sharp.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections