General

  • Target

    AKUMA.zip

  • Size

    61.2MB

  • MD5

    42c940c3d962554a92dbd7f0430c1ecf

  • SHA1

    47f22d570ec172afbce42cbfc22a241e9f03c7c8

  • SHA256

    05d89502284d8d06ad471eba6ffaef5403c0d48f91df6d6d49b8bcaf9213e71c

  • SHA512

    d21db761a8ad1cb5e86294e68057b4bba8a3db37d6a24a084f9232ae8d5a79d32b96ac4b91b29cf5328cb9a6409183a05b4884d9a1e6a19ffde18fff6c8e8b4b

  • SSDEEP

    1572864:1FqxFKAc074iV3VAtQSjW7LfFtqD9zcwcalU:bgpr740VAtQnqD9zVlU

Score
10/10

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

  • Dcrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • AKUMA.zip
    .zip

    Password: 1

  • AKUMA/AkumaNumber.csv
  • AKUMA/__pycache__/banner.cpython-310.pyc
  • AKUMA/__pycache__/banner.cpython-311.pyc
  • AKUMA/__pycache__/banner.cpython-312.pyc
  • AKUMA/__pycache__/ddos.cpython-311.pyc
  • AKUMA/__pycache__/deanon.cpython-310.pyc
  • AKUMA/__pycache__/deanon.cpython-311.pyc
  • AKUMA/__pycache__/deanon.cpython-312.pyc
  • AKUMA/__pycache__/get_ip.cpython-310.pyc
  • AKUMA/__pycache__/mail.cpython-310.pyc
  • AKUMA/__pycache__/mail.cpython-311.pyc
  • AKUMA/__pycache__/mail.cpython-312.pyc
  • AKUMA/f.l.e.a.t..exe
    .exe windows:5 windows x86 arch:x86

    Password: 1

    fcf1390e9ce472c7270447fc5c61a0c1


    Headers

    Imports

    Sections