General

  • Target

    806Pwjs.zip

  • Size

    169KB

  • MD5

    2618ff49a0fa6b0bbc056dc1fbc38010

  • SHA1

    aed7d5eb6d9385b2d14572d0afd1226d2d50bd5e

  • SHA256

    63ab26abd637737d2822f2350fb70add3ed4ce715137c1b8a5d60b8eed087ad9

  • SHA512

    b01c896181d4523cd5396483468c9ae94c325ed0524cb75fb8a26d211011b1d079e4d94f1401003bbf31ddd5ccbf368762d1625b85bba7c023b73c7899215624

  • SSDEEP

    3072:Z+asHwp6b1HHYNMA0WWJ3KCgmI7g121X/c8hp0HFTN24H6HXqfYOZi:0asTHGPCICgZ77X/HhpuTNOafHZi

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 806Pwjs.zip
    .zip
  • AmideWin/AMIDEWINx64.EXE
    .exe windows:6 windows x64 arch:x64

    272dae991c0311688a7a20faa5468b8e


    Headers

    Imports

    Sections

  • AmideWin/amifldrv64.sys
    .sys windows:6 windows x64 arch:x64

    b05ee5c816a30bc52378c759486af0b9


    Code Sign

    Headers

    Imports

    Sections