Overview

overview

7

Static

static

7

Twisted - ...ns.pdf

windows10-1703-x64

3

Twisted_Launcher.exe

windows10-1703-x64

7

fixer_driver.exe

windows10-1703-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Twisted (1) (1).zip

  • Size

    5.6MB

  • MD5

    089263473923c652e763a11a2c9ab412

  • SHA1

    3585a69d1010605ea3e269dfe8d47d20305ab8aa

  • SHA256

    2d32b7a922aa53b1bed14c2607644dbc0b7da5538466721b1c7f51e95d0782d6

  • SHA512

    f9495fc797b15023b1fafe65de2a3c9d413fec39f36de0f69a064ad43fb9ef36d1dd92b08d04391a5d1df98d4e41de6c7e94f4c6e2889bbabcdebf808f027677

  • SSDEEP

    98304:y0N2FMPaqgyjt8fbCh8XuCmJCnip49lC+7zKnuPWccPCi+iBuq:jCqAfWh8ZmJLLurc/

Score
7/10
pdflinkthemidaupx

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

    themida
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Twisted (1) (1).zip
    .zip

    Password: lol

  • Turn_OFF_Microsoft_Vulnerable_Driver_Blocklist.reg
  • Twisted - Instructions.pdf
    .pdf

    Password: lol

    • https://www.sordum.org/9480/defender-control-v2-1/

  • Twisted_Launcher.exe
    .exe windows:6 windows x64 arch:x64

    Password: lol


    Headers

    Sections

  • fixer_driver.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections