Overview
overview
8Static
static
3goodbyedpi...c1.zip
windows7-x64
1goodbyedpi...c1.zip
windows10-2004-x64
1goodbyedpi...le.cmd
windows7-x64
8goodbyedpi...le.cmd
windows10-2004-x64
8goodbyedpi...st.cmd
windows7-x64
1goodbyedpi...st.cmd
windows10-2004-x64
1goodbyedpi...ir.cmd
windows7-x64
1goodbyedpi...ir.cmd
windows10-2004-x64
1goodbyedpi...ry.cmd
windows7-x64
1goodbyedpi...ry.cmd
windows10-2004-x64
1goodbyedpi...ir.cmd
windows7-x64
1goodbyedpi...ir.cmd
windows10-2004-x64
1goodbyedpi...ne.txt
windows7-x64
1goodbyedpi...ne.txt
windows10-2004-x64
1goodbyedpi...pi.txt
windows7-x64
1goodbyedpi...pi.txt
windows10-2004-x64
1goodbyedpi...sh.txt
windows7-x64
1goodbyedpi...sh.txt
windows10-2004-x64
1goodbyedpi...rt.txt
windows7-x64
1goodbyedpi...rt.txt
windows10-2004-x64
1goodbyedpi...st.txt
windows7-x64
1goodbyedpi...st.txt
windows10-2004-x64
1goodbyedpi...be.txt
windows7-x64
1goodbyedpi...be.txt
windows10-2004-x64
1goodbyedpi...st.cmd
windows7-x64
1goodbyedpi...st.cmd
windows10-2004-x64
1goodbyedpi...ir.cmd
windows7-x64
1goodbyedpi...ir.cmd
windows10-2004-x64
1goodbyedpi...ve.cmd
windows7-x64
1goodbyedpi...ve.cmd
windows10-2004-x64
1goodbyedpi...rt.dll
windows7-x64
3goodbyedpi...rt.dll
windows10-2004-x64
3General
-
Target
goodbyedpi-0.2.3rc1.zip
-
Size
919KB
-
Sample
240802-wq8cxathlp
-
MD5
9fb066f126df3f5f7a8c41a4ba4c5fb1
-
SHA1
511562f4e779de05d35bd0741aca485c89fb69d8
-
SHA256
d8b6ddfcbd436b7fb80e79c2950202ff94f23f8361cf57900a4d1bce8542b63e
-
SHA512
fa396fce02fcd1e492e18eb0a804e0886f009b83bb7dd4dc1085f941b4fc7364e4f2562e014979a6c869aa1b56bfc5a87fb55c1705b5a584e692ba5bb5209890
-
SSDEEP
12288:FDlA/VF+6gyi/OHsTBK8k8YDb6cMLbFfSVx1IolcosjuwSyO0K9rhGTSdb6+q9rV:12e6mO+k8GbrMLbFWYonsBKeg2+qD
Static task
static1
Behavioral task
behavioral1
Sample
goodbyedpi-0.2.3rc1.zip
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
goodbyedpi-0.2.3rc1.zip
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
goodbyedpi-0.2.3rc1/0_russia_update_blacklist_file.cmd
Resource
win7-20240705-en
Behavioral task
behavioral4
Sample
goodbyedpi-0.2.3rc1/0_russia_update_blacklist_file.cmd
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
goodbyedpi-0.2.3rc1/1_russia_blacklist.cmd
Resource
win7-20240708-en
Behavioral task
behavioral6
Sample
goodbyedpi-0.2.3rc1/1_russia_blacklist.cmd
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
goodbyedpi-0.2.3rc1/1_russia_blacklist_dnsredir.cmd
Resource
win7-20240704-en
Behavioral task
behavioral8
Sample
goodbyedpi-0.2.3rc1/1_russia_blacklist_dnsredir.cmd
Resource
win10v2004-20240802-en
Behavioral task
behavioral9
Sample
goodbyedpi-0.2.3rc1/2_any_country.cmd
Resource
win7-20240729-en
Behavioral task
behavioral10
Sample
goodbyedpi-0.2.3rc1/2_any_country.cmd
Resource
win10v2004-20240802-en
Behavioral task
behavioral11
Sample
goodbyedpi-0.2.3rc1/2_any_country_dnsredir.cmd
Resource
win7-20240704-en
Behavioral task
behavioral12
Sample
goodbyedpi-0.2.3rc1/2_any_country_dnsredir.cmd
Resource
win10v2004-20240802-en
Behavioral task
behavioral13
Sample
goodbyedpi-0.2.3rc1/licenses/LICENSE-getline.txt
Resource
win7-20240705-en
Behavioral task
behavioral14
Sample
goodbyedpi-0.2.3rc1/licenses/LICENSE-getline.txt
Resource
win10v2004-20240802-en
Behavioral task
behavioral15
Sample
goodbyedpi-0.2.3rc1/licenses/LICENSE-goodbyedpi.txt
Resource
win7-20240708-en
Behavioral task
behavioral16
Sample
goodbyedpi-0.2.3rc1/licenses/LICENSE-goodbyedpi.txt
Resource
win10v2004-20240802-en
Behavioral task
behavioral17
Sample
goodbyedpi-0.2.3rc1/licenses/LICENSE-uthash.txt
Resource
win7-20240708-en
Behavioral task
behavioral18
Sample
goodbyedpi-0.2.3rc1/licenses/LICENSE-uthash.txt
Resource
win10v2004-20240802-en
Behavioral task
behavioral19
Sample
goodbyedpi-0.2.3rc1/licenses/LICENSE-windivert.txt
Resource
win7-20240704-en
Behavioral task
behavioral20
Sample
goodbyedpi-0.2.3rc1/licenses/LICENSE-windivert.txt
Resource
win10v2004-20240802-en
Behavioral task
behavioral21
Sample
goodbyedpi-0.2.3rc1/russia-blacklist.txt
Resource
win7-20240704-en
Behavioral task
behavioral22
Sample
goodbyedpi-0.2.3rc1/russia-blacklist.txt
Resource
win10v2004-20240802-en
Behavioral task
behavioral23
Sample
goodbyedpi-0.2.3rc1/russia-youtube.txt
Resource
win7-20240704-en
Behavioral task
behavioral24
Sample
goodbyedpi-0.2.3rc1/russia-youtube.txt
Resource
win10v2004-20240802-en
Behavioral task
behavioral25
Sample
goodbyedpi-0.2.3rc1/service_install_russia_blacklist.cmd
Resource
win7-20240704-en
Behavioral task
behavioral26
Sample
goodbyedpi-0.2.3rc1/service_install_russia_blacklist.cmd
Resource
win10v2004-20240802-en
Behavioral task
behavioral27
Sample
goodbyedpi-0.2.3rc1/service_install_russia_blacklist_dnsredir.cmd
Resource
win7-20240708-en
Behavioral task
behavioral28
Sample
goodbyedpi-0.2.3rc1/service_install_russia_blacklist_dnsredir.cmd
Resource
win10v2004-20240802-en
Behavioral task
behavioral29
Sample
goodbyedpi-0.2.3rc1/service_remove.cmd
Resource
win7-20240729-en
Behavioral task
behavioral30
Sample
goodbyedpi-0.2.3rc1/service_remove.cmd
Resource
win10v2004-20240802-en
Behavioral task
behavioral31
Sample
goodbyedpi-0.2.3rc1/x86/WinDivert.dll
Resource
win7-20240708-en
Behavioral task
behavioral32
Sample
goodbyedpi-0.2.3rc1/x86/WinDivert.dll
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
goodbyedpi-0.2.3rc1.zip
-
Size
919KB
-
MD5
9fb066f126df3f5f7a8c41a4ba4c5fb1
-
SHA1
511562f4e779de05d35bd0741aca485c89fb69d8
-
SHA256
d8b6ddfcbd436b7fb80e79c2950202ff94f23f8361cf57900a4d1bce8542b63e
-
SHA512
fa396fce02fcd1e492e18eb0a804e0886f009b83bb7dd4dc1085f941b4fc7364e4f2562e014979a6c869aa1b56bfc5a87fb55c1705b5a584e692ba5bb5209890
-
SSDEEP
12288:FDlA/VF+6gyi/OHsTBK8k8YDb6cMLbFfSVx1IolcosjuwSyO0K9rhGTSdb6+q9rV:12e6mO+k8GbrMLbFWYonsBKeg2+qD
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/0_russia_update_blacklist_file.cmd
-
Size
130B
-
MD5
a6af4b081a4cbcd448759306b2366eac
-
SHA1
0d1d887413e074b0991b5be0ca296f18053502c0
-
SHA256
d9d7c57c7dedb3a4e6566ddd7623758f53986a2c34e0cd3784b84f7f881a01c4
-
SHA512
f406b865f4bbe08181f1c1f239f198bab03b5b681174323b78f0b3c1790a1e177473a89ee566dac906c08d044fb0eb9a48991cf773222d378f469bd4941af62f
Score8/10-
Download via BitsAdmin
-
-
-
Target
goodbyedpi-0.2.3rc1/1_russia_blacklist.cmd
-
Size
274B
-
MD5
76763259e528cd27e998fb4c665c2b78
-
SHA1
f2b6e15dca04c54ace2aefc4bc72656dc7550cab
-
SHA256
69c8b67fafbca446ce5302e97f9947191ecb84d2a51eae61d4955dc3e2147da0
-
SHA512
69d35fb64ab4cee901b7ecc9baac437cd4dd5e3feb5b006a0fa8c3d52fce8ac9eea5ee68a6dcea01f5386966ac135e85bfba8fc8eecec5d8c70212e795d0dd76
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/1_russia_blacklist_dnsredir.cmd
-
Size
361B
-
MD5
06018c5958cddd1d0cf3135762aeb2eb
-
SHA1
42323a08fc5a9d9b600852cd587f0a7dd914858b
-
SHA256
472d9bd4f0366bb9478b6cd61302f12bf6cffbed038508a67087250bf610e355
-
SHA512
c49a4b90e08785401049dc374599404976d9a5e145ed0a034f18615d4b8a4c4cf8adc4b714ed7b68445e66546d9c59a5666846d71e70b7fba600659821f4a4f0
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/2_any_country.cmd
-
Size
204B
-
MD5
72103c58f2ed536ebc07e19fd00fa2f0
-
SHA1
cd37e3bfdc4dbeecfd945561b8538e328dcfe2f9
-
SHA256
17a3d7b8b1e1340f67d3687ce9162199c0a25025941d23954880808403487d07
-
SHA512
4270dfb825f03d41d5911db8cef7de43c58a0401d84bd72e047da6b9fc6753789c070c9fd61bb0145f70b47026ba70d9d18612fefd1314436998adb354de815b
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/2_any_country_dnsredir.cmd
-
Size
291B
-
MD5
77048213eb9358ff71f99667dd08034b
-
SHA1
cb35b4554e96f3a7089c103e911eab58c9369d53
-
SHA256
e599adb50f219cfbd620a21167b6cfc68e326da50836b5985826e45e88d247fe
-
SHA512
6af0c1281108ad7d61d61ae98ae84e5ad024fed32dd997e2f053dcb40a1d595cf76310ce36397791e747cad984a341a959fd4eb43d284cfcaf6cf17f7c5f7236
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/licenses/LICENSE-getline.txt
-
Size
1KB
-
MD5
3a7edebc3612bcea2306f73b92342a44
-
SHA1
9b177bac083f79d4334373a8144899b60155ecc6
-
SHA256
ec5f8e03fccb3842cc62ad79ea5f6f6058988e2721a3e6566e8fb72786d485c4
-
SHA512
17e987e112d02b1afd430db553ba0826c4b2ae7cfeba9adc3b9d8cebc93bbb6f02024a6ef95adf623eab5331af718fd10bafbf20b2dc5e906c0d2381ca11ba8d
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/licenses/LICENSE-goodbyedpi.txt
-
Size
11KB
-
MD5
c4082b6c254c9fb71136710391d9728b
-
SHA1
ff426822972c8972e3e4e782baac6f5304fd458c
-
SHA256
e03ba41d7fab20700769fe4118bab50d800cb74f990353a05d2f5fff1c228363
-
SHA512
4c71355f37002b14cf072328fe42569405cac2dc13b8c6ae871a1a5e958411417b7d4238a49c60c9bf5d956c5488b8ec9f4af99a6a6f8e5d8508443e4ceed2fa
-
SSDEEP
192:ff9qG4QSAVOSbwF1wOFXuFJyQtxmG3ep/7rlzKfHbxc+Xq0rhlkT8mjHfH2:9Ou9b01DY/rGBt+dc+aclkT8SH+
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/licenses/LICENSE-uthash.txt
-
Size
1KB
-
MD5
5cc1f1e4c71f19f580458586756c02b4
-
SHA1
08473f885bd0231790223311cc3a712faf8abded
-
SHA256
d3c6556e48104c31e3e0c62238c749c2a09ca79ee87da50b9cd29c6c9027d57d
-
SHA512
d038952606c33cac0870b7018e8a33fc0e4d120363b392d9f5af36fd4e2519d95f51da1f87c30787db02d71208e40f806e8e0f6c9766791086150f98b3b8a489
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/licenses/LICENSE-windivert.txt
-
Size
39KB
-
MD5
b864fbb188a7c3a11cef80f3ee902d77
-
SHA1
7a3f0538f8fd2ee1c30fc1952cbf83b13b360b3f
-
SHA256
e5453b2e71e4c4dcdb89a2539655add3a63202521cf3012b768e8bfeda199312
-
SHA512
eb03bb26490535d98e270c89d70dfc9d1a0e2a22ad2bc09ed316e522fb52177b24bb6a2c023c9b010837b6b9a28dfe6492dc0b77f45883385a7e66dd00463c32
-
SSDEEP
768:Qs57D0LVw7Y+tNdSz3ZlqXOWoInuzx3Y8N3Wib:QspD8VwVtNIq1uzZY1I
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/russia-blacklist.txt
-
Size
2.0MB
-
MD5
10428c8013f3a63e4d85c7e8c12d1288
-
SHA1
1d56c58626c75947391c48e0512be1308852d1ad
-
SHA256
a0edd9b4d4d99b31b62f73ad4d0819408b0f38a4178893d5279a9bc6736b0668
-
SHA512
4875c71317946315e43231a1a41b7cc1588a98236377d801418493bddd06ceebc2d80afe24e7e5cbcdb4bf1af7a6e907fc968283fefd458478f850622d730043
-
SSDEEP
49152:UIatr0krJE+oT38Vu+OmA17vK8edV+giALOEbVnTmCa+:G
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/russia-youtube.txt
-
Size
47B
-
MD5
224c80ffbff4b72fb9c7daeea96f2d06
-
SHA1
54ae8bc9f32415a1d7dea35cb7cfeac76184f865
-
SHA256
40499135555124cdee19699e060e30a8649257420c791717e8d875506529b1f6
-
SHA512
465e73037165ff79f3799f45fcba39a7bf73bca5d1cb3b454873714ffad233e4478aee88d3798275dec8a8d677a398d387e7fc01b3a10934c0363b741ac98771
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/service_install_russia_blacklist.cmd
-
Size
660B
-
MD5
af6dac6686b77dc51203800737f41b75
-
SHA1
385568a96d92ca8206e45b6cf945b2fa11b29f80
-
SHA256
4d2068f04436998bdf003c430f7bc28f0d0fc7d48031b8a37983f84bad6374bb
-
SHA512
ae54f13ec18a71983b598f9f2d38231168b9f7de3238f6f742128331f2957e0a770b9502f2bf1997c8f6a6cb0c4bb90e9f4a8156ac807744141c51f4b0c4c49c
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/service_install_russia_blacklist_dnsredir.cmd
-
Size
747B
-
MD5
77b1d63472e67c4368961c463cc1d92c
-
SHA1
7653fa303944e6f2436ef72ad8a6d11eb6f8b95e
-
SHA256
450f2b003fb579f897eded1131c9e893afde7b2ebf07b86110449e57ed9a0da8
-
SHA512
67763f15836d456bd8713533599f2bc6d97d16887fc4078f5c5c36ec0b42beffc267e5eb9396f16aa350ce39a61c57ecc1c82e32068495a74489af68dacc3a31
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/service_remove.cmd
-
Size
272B
-
MD5
295c774295b7fab9f7e3100bf3a482da
-
SHA1
ddee388d720107a5959126e85e979daf9f6579b7
-
SHA256
d6f19938699e88198ace9206e417e1289f211e187cfed163d31172f97cb91d55
-
SHA512
dfca3ad06fcf73ecf1499828923a58f37d7ea82c531c3f71ed39ee98ec1be490a5220c5626ab45c817bbce7cb4362791fc3ee680511841dd317961ba0f346d54
Score1/10 -
-
-
Target
goodbyedpi-0.2.3rc1/x86/WinDivert.dll
-
Size
42KB
-
MD5
1cb0efd60883b5637b31bf46c34ae199
-
SHA1
b91de8d5f072f8c6aabd029d96568effdd5662d9
-
SHA256
625ffdd95bfabff32d0e8a95beabcd303c01c8bba73b90402d4e84d6e15dd8e5
-
SHA512
68c7c257b8cd28011f4b9af09b1e4c7b3d69c6f1457ca6f68fe114fcb382e470b87b9c12ca5d6d4aedd27a103a35fac9093c08b288867cceb9621a60ac70a6f7
-
SSDEEP
768:/BD4bCa+EfZ9+EwleNwYLWKkR9c5s1R2wdRt7JtXwxwprTKkimOyd:/BD4bCofZ8VYwYyKkR9c542wdRQ0TKkV
Score3/10 -