General
-
Target
b1dd75efa7ba920522bd4bfe4a3e5d08138bfc548faff601206b0cc56c9bb674
-
Size
70KB
-
MD5
bdf4fc15d73d750fb764b52da65d6ab4
-
SHA1
51aa0638430b6341498b65a877d1e0940064f1fc
-
SHA256
b1dd75efa7ba920522bd4bfe4a3e5d08138bfc548faff601206b0cc56c9bb674
-
SHA512
74b3c5f641b289236189bb38871c1e3962f70a172d1e52dedcf020fe8b843ca9f7ec3591726869fafa12745b61349c8b4807c46c3e6c00b26d9596efbf0d7a29
-
SSDEEP
1536:eclu3E0ty5RM6Esc4m6cq1ZebmaL4UnpCdsfV1YADir+6S:ju3NURAscOx7wpCKznz
Score
10/10
Malware Config
Signatures
-
Detects win.dharma. 1 IoCs
-
Identifies DHARMA ransomware 4 IoCs
-
UPX dump on OEP (original entry point) 1 IoCs
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
b1dd75efa7ba920522bd4bfe4a3e5d08138bfc548faff601206b0cc56c9bb674
Headers
Sections
-
out.upx
Headers
Sections