Resubmissions

03-08-2024 20:12

240803-yza5watgkl 7

03-08-2024 20:10

240803-yxtjfatfpn 7

General

  • Target

    so7036c.rar

  • Size

    446KB

  • MD5

    9f3cbb783955378db7a59eeddea251ea

  • SHA1

    5b5c6ffe4d6fdb42848cbd4c0fb8918ff34f8b90

  • SHA256

    46dff78f5687b905125904a7ed7387d4eac539ed4adae703a950e61718132b82

  • SHA512

    373c928c346dea8d1f842e89596abd3d279424292f54983b9351857bd1d2f797200b12d46b11d2b9d54d2864e0b90a5a72ebcbc44897827642af4aca33acdb08

  • SSDEEP

    12288:1fQ6gBuJBOMZ5i2FLv9Qx9/Lfj2u0hki6WtMdWVyy:eBuJBK2kzjRWgED

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • so7036c.rar
    .rar

    Password: sordum

  • so7036c/Defender_Settings.vbs
    .vbs
  • so7036c/ReadMe.txt
  • so7036c/dControl.exe
    .exe windows:5 windows x86 arch:x86

    Password: sordum


    Code Sign

    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • so7036c/dControl.ini