Overview

overview

10

Static

static

7

Krampus/Kr...BH.exe

windows10-1703-x64

10

Krampus/Kr...gs.vbs

windows10-1703-x64

3

Krampus/Kr...ol.exe

windows10-1703-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Krampus.zip

  • Size

    15.4MB

  • MD5

    f2c4af070b935a1522b92d790ddee93c

  • SHA1

    f9bf33356a0f91b091d9f61e688af44b800f57a6

  • SHA256

    4a643c8ac145763b7e4a9b410a5dcc3562faf0f2204ec0d2613833923628f419

  • SHA512

    369f8c27db42569f6185499f792d7d01013cc1e48652f568dfde6cfdc3c6d4d40f390a1b62dda5adbaace33e3f9509a062bc0e08863f4704084fe7d33ea7778f

  • SSDEEP

    393216:Nkkk95qd0eLlm6DpdmjiPGn6asoNaAad25Aybi3R4Lh8lH:Nw9bmlmomv99aAg/yERoI

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Krampus.zip
    .zip
  • Krampus/Krampus/B1OdUv8CBH.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Krampus/Krampus/DefenderControl/Defender_Settings.vbs
    .vbs
  • Krampus/Krampus/DefenderControl/ReadMe.txt
  • Krampus/Krampus/DefenderControl/dControl.exe
    .exe windows:5 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • Krampus/Krampus/DefenderControl/dControl.ini
  • Krampus/Krampus/UserManual.txt
  • Krampus/Krampus/fuckkrampus.png
    .png
  • Krampus/Krampus/readme.txt