General

  • Target

    0dcdb4d96a44ebaa3e16a60d43d6a6bd8f8b662cc7cb59f2fc9252b6b6e488dc

  • Size

    382KB

  • MD5

    5678a76745ad0c74c90554ac7f560cba

  • SHA1

    dc3d14460c803ca5ff7599be5bcdf32e80cd8fb8

  • SHA256

    0dcdb4d96a44ebaa3e16a60d43d6a6bd8f8b662cc7cb59f2fc9252b6b6e488dc

  • SHA512

    3b02ea5ddc314a728a6b44296c98cf5924fb4c08aee162f788899f8d764eb1eb61c7c319811ccc887f771d50fefe833909571de89a7d849e165cd7cf07d6cd2e

  • SSDEEP

    6144:OsO4GTtZSkkFFzvQsVbrB669lDcFW8ExKiTLR72ekC64O/AeqWwKSVDmUsD+OHzw:GtZLkPzvQ4nx93UiTLJcZAeqa0LsDJTw

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 10 IoCs

    Checks for missing Authenticode signature.

Files

  • 0dcdb4d96a44ebaa3e16a60d43d6a6bd8f8b662cc7cb59f2fc9252b6b6e488dc
    .zip

    Password: infected

  • ASKBot1.bin
    .exe windows:6 windows x64 arch:x64

    3da60347841fe236e3ec213c560605d2


    Headers

    Imports

    Exports

    Sections

  • ASKBot2.bin
    .exe windows:6 windows x64 arch:x64

    64595986bdd3b60c3ddef52b8fa47847


    Headers

    Imports

    Exports

    Sections

  • Labs Readme.txt
  • Sample1.bin
    .7z
  • askbot-upx.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Exports

    Sections

  • Sample2.bin
    .exe windows:6 windows x64 arch:x64

    64595986bdd3b60c3ddef52b8fa47847


    Headers

    Imports

    Exports

    Sections

  • Sample3.bin
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Exports

    Sections

  • Sample4.bin
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Sample5.bin
    .dll windows:10 windows x64 arch:x64

    dd0e8e26fa9213a5cfffff1806f14ebe


    Headers

    Imports

    Exports

    Sections

  • Sample6.bin
    .dll windows:5 windows x86 arch:x86

    719f7217317f5e7c875725779feaefbd


    Headers

    Imports

    Sections