General

  • Target

    3b1e4b48aa542d4a7142395850fb3ecef53f47ec4e9d409803489c8405b5f030

  • Size

    380KB

  • MD5

    a9a60f4b3c977aa532a35f6b7c3c2341

  • SHA1

    28eabd0e6155a69e040d076b771219969a0b040e

  • SHA256

    3b1e4b48aa542d4a7142395850fb3ecef53f47ec4e9d409803489c8405b5f030

  • SHA512

    c0e94bbcada0564671db254bf319b18d5ca44cf342ce9875aa8361f09ccaf67bdd1bd18d566cebced000fbc1b7ef9efc5b79b5852ed00136d1116adcdd913b82

  • SSDEEP

    6144:me1cQ7Z6QNqj1aO5Fm75Aeu9J5wjDcROFXnz4jtm7rwL:NcQ7tN6aO3m75/u9wHCsXz4pm7r

Score
9/10

Malware Config

Signatures

  • CryptOne packer 1 IoCs

    Detects CryptOne packer defined in NCC blogpost.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3b1e4b48aa542d4a7142395850fb3ecef53f47ec4e9d409803489c8405b5f030
    .exe windows:4 windows x86 arch:x86

    438bece8c96b99d017141b3f95b86408


    Headers

    Imports

    Sections