2024-06-02_d66cfbd170ba9b574216825822c582b9_megazord

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-02_d66cfbd170ba9b574216825822c582b9_megazord
Size

15.5MB
MD5

d66cfbd170ba9b574216825822c582b9
SHA1

4790e0ffe18bfe923fd5e654d40f2e2f184c5655
SHA256

5cadd0d9412916a31db42abaa564c94559f75f14a24c7600f4c37a8ab8b0bab5
SHA512

1abca53238daa45fb5e317db753c34933187e209bfa02de3df2fd74cf6a829651dc5eeb9d7f3c3ba4362a315c44a75177f51216b08159d8f5977b7d652ceb71b
SSDEEP

196608:W0bM540VW12e1MhhiCNKB1+p4DWysmsEJUoT7cWM:rM540VWIe12hiCNzprtwWuNM

Score

10^/10

themida

Malware Config

Signatures

Detects executables packed with Themida 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_Themida

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
sample	themida

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-02_d66cfbd170ba9b574216825822c582b9_megazord

Files

2024-06-02_d66cfbd170ba9b574216825822c582b9_megazord
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 339KB - Virtual size: 338KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.themida
Size: 6.1MB - Virtual size: 6.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 6.3MB - Virtual size: 6.3MB

.rdata Size: 2.7MB - Virtual size: 2.7MB

.data Size: 16KB - Virtual size: 28KB

.pdata Size: 339KB - Virtual size: 338KB

_RDATA Size: 512B - Virtual size: 500B

.rsrc Size: 76KB - Virtual size: 76KB

.reloc Size: 35KB - Virtual size: 34KB

.imports Size: 2KB - Virtual size: 4KB

.tls Size: 1024B - Virtual size: 4KB

.themida Size: 6.1MB - Virtual size: 6.1MB

.reloc Size: 16B - Virtual size: 4KB

.text
Size: 6.3MB - Virtual size: 6.3MB

.rdata
Size: 2.7MB - Virtual size: 2.7MB

.data
Size: 16KB - Virtual size: 28KB

.pdata
Size: 339KB - Virtual size: 338KB

_RDATA
Size: 512B - Virtual size: 500B

.rsrc
Size: 76KB - Virtual size: 76KB

.reloc
Size: 35KB - Virtual size: 34KB

.imports
Size: 2KB - Virtual size: 4KB

.tls
Size: 1024B - Virtual size: 4KB

.themida
Size: 6.1MB - Virtual size: 6.1MB

.reloc
Size: 16B - Virtual size: 4KB