General

  • Target

    2c4b59e38d6e7adf5d4edaf5b67d78fbc846c4218e0c649b047538c4f3840b30

  • Size

    380KB

  • MD5

    3d4a0828c518d2de6abaa69fd440c2cb

  • SHA1

    120c1d1358958a798f9811f909a363f5ec96cf42

  • SHA256

    2c4b59e38d6e7adf5d4edaf5b67d78fbc846c4218e0c649b047538c4f3840b30

  • SHA512

    bae78f38b8bc9fa7b467835af68d1f3802d39bddfb792be247723f321c58b6728de68de31f1cf6cd498389d8afcbf2599b21083ef3640ef24fcc9684eb3227d8

  • SSDEEP

    6144:+e1YlNk2GVPYzoBEuC8Wr9hrqc5FDlD6PX055trwL:VYlNRmFJC8y9hrqGdVt5rr

Score
9/10

Malware Config

Signatures

  • CryptOne packer 1 IoCs

    Detects CryptOne packer defined in NCC blogpost.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2c4b59e38d6e7adf5d4edaf5b67d78fbc846c4218e0c649b047538c4f3840b30
    .exe windows:4 windows x86 arch:x86

    438bece8c96b99d017141b3f95b86408


    Headers

    Imports

    Sections