General

  • Target

    5eeb5d3ee576daedae9f3bd64671c002a0d5b80313f78678df449b82335c1130

  • Size

    1.0MB

  • MD5

    f5eca9408d0f7e66bf8686fc6f322dea

  • SHA1

    c5d3cb9c5bf02dc74ace0b6b3dfbfc7460141a3a

  • SHA256

    5eeb5d3ee576daedae9f3bd64671c002a0d5b80313f78678df449b82335c1130

  • SHA512

    76c448b50f51ce829a3f6e7bd21503c8f0a1d0b60b8e0e8d2290543fbf489a77ea8729b3b8d1591a2ef0785ba3f8e3c18cd2f8448c8907d918e16e81e65bb333

  • SSDEEP

    24576:5k/vonhpYZQMkZWPNNjZ/AQXwIsceV4+z8F0LdA9:5k/vohp6zhdZeVJnd8

Score
10/10
upx

Malware Config

Signatures

  • Detects command variations typically used by ransomware 1 IoCs
  • UPX dump on OEP (original entry point) 2 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 5eeb5d3ee576daedae9f3bd64671c002a0d5b80313f78678df449b82335c1130
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Exports

    Sections