Overview

overview

9

Static

static

7

A6J2824DG.exe

windows7-x64

7

A6J2824DG.exe

windows10-2004-x64

7

Product/Di...ol.exe

windows7-x64

7

Product/Di...ol.exe

windows10-2004-x64

7

Product/win11 fix.exe

windows7-x64

9

Product/win11 fix.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Product.rar

  • Size

    7.3MB

  • MD5

    4dc60d46b53aa5a67ab52a8d352b2e0b

  • SHA1

    75566fcb170fd2529ed12a7a4c6ebc07be6e3bc7

  • SHA256

    fbf6fd605eac3c46e6432eddb2cccf93b15339e57e79f389f976d465bc7676ae

  • SHA512

    68fc55178e648e0b92d361a71c27aa20039006e7ece54e0c324e9236b2bf1b3a3b2239f67b3d32b2fb1cc7714da9784772473889cb6d114d7061b11a74adfbf7

  • SSDEEP

    196608:+aapptliiNq9LfwctxaNglQiBK17M5bZGVafBqaEv0v:b8tlimsLfwmzd47M5bYV85X

Score
7/10
upxthemida

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

    themida
  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • Product.rar
    .rar
  • Product/A6J2824DG.rar
    .rar
  • A6J2824DG.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Exports

    Sections

  • Product/Disable defender/dfControl.exe
    .exe windows:5 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • Product/readme.txt
  • Product/win11 fix.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections