General
-
Target
FluxLora.zip
-
Size
26KB
-
MD5
382a44b408a514fe3ab338a5e3d8b374
-
SHA1
5ba5888436ff907fcf76f9bcf47e6da317ad99f7
-
SHA256
b5af0bc161225e2ec1e0161d4a38af0b30f13a6e9e91f4ed3bc64de4e7940281
-
SHA512
8bc06dc0cf21a5da05d7d08354f04b64f9a411597ddcfdbc5d5063afdbb7e0ca60b24d20fb7b06ec75a03f8fdea9790b0bd92fd04ff013062038c55cd9b1a92f
-
SSDEEP
768:k00cW6Wu1wpyLBAFoYmBrQgqyK3yeEfoCQWUm:k7cWju1pLBA6nmf3yenCQs
Malware Config
Extracted
asyncrat
0.5.8
Default
127.0.0.1:6700
4Et0bdTVvRcT
-
delay
3
-
install
true
-
install_file
FluxusV2.exe
-
install_folder
%AppData%
Signatures
Files
-
FluxLora.zip.zip
Password: ladsguaslfhikd
-
FluxLoraV2/FluxLora.exe.exe windows:4 windows x86 arch:x86
Password: ladsguaslfhikd
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
FluxLoraV2/READ ME!!!!!!!!!!.txt