General

  • Target

    chappo_3_days_key_new.rar

  • Size

    17.7MB

  • MD5

    abaac60d2349aef781d8697b26a09442

  • SHA1

    f48b43b226cbbf16852f8c27710367c696b291e9

  • SHA256

    f6c17feb9634d46a34ba851526576f947805135b368ff079936cdf0492553f70

  • SHA512

    b4724a24e11000ae90e6a089125bbc4b140faab194d8f2dc4fb69b3f2112d4181c671bb242cf635dabd25b29071a3cdf1548d94ce06d7d14fd2c8ff2954dbcac

  • SSDEEP

    393216:L3nwfyVg2kesEiwEOQ3kh+EjiRdiEAPo+kyfsC0Zwt5cnL0xfttDFBnUD9:zHaL1OQ+jjEAPo+kyfsCiU5co7tJG9

Score
10/10

Malware Config

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • chappo_3_days_key_new.rar
    .rar
  • chappo 3 days key new/Guna.UI2.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • chappo 3 days key new/arfarf_protected.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections