Static task
static1
General
-
Target
sellix.6e5971-d091adfb91-2f2c87.1720488652.zip
-
Size
17.5MB
-
MD5
c7059d4d2b62387a9faa29b22b4e38ae
-
SHA1
87b2e5e4f8dc0c48fb341f9451a435dcd60d557b
-
SHA256
ca53c5584913491d1dff3729b0551726709d9e647c9b290ea7091a5f1e8bc12a
-
SHA512
2f634def32704bb8a96d1dd59464dca19599917a4e9e6179a3be7bd91ce746991817f69a75062b12d5550979a978d50c59aa37403338b83bf40a21a1bcbba56a
-
SSDEEP
393216:JLQS842Ku49zcW8Hlzh0+E9Fbe5N4PlBxowatVjOA1kjFmICv0:9S42k98FF2r65Gfm/jOkkjo0
Malware Config
Signatures
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
resource unpack002/BoostTool/BoostTool.exe unpack002/BoostTool/Online.exe
Files
-
sellix.6e5971-d091adfb91-2f2c87.1720488652.zip.zip
-
661764d35716c-BoostTool.rar.rar.rar
-
BoostTool/BoostTool.exe.exe windows:0 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
Lite Size: 3.4MB - Virtual size: 3.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Lite Size: 6.5MB - Virtual size: 6.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 17KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
BoostTool/Data/Avatar/avatar.png.png
-
BoostTool/Data/Banner/banner.gif.gif
-
BoostTool/Data/Config.json
-
BoostTool/Online.exe.exe windows:0 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
Lite Size: 3.4MB - Virtual size: 3.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Lite Size: 6.2MB - Virtual size: 6.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 77KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
BoostTool/README.txt