Archive[.]zip | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

Archive.zip
Size

38.5MB
MD5

52e4811f498e5f1a44c55461fd22a855
SHA1

828266037995ac982068c5d983035731c4b7414d
SHA256

07f795dd3941c4d1f8f465843419d02d78becc6c9525927439453f7866a86701
SHA512

a6c5f1fd507d316dc5c9ac813d8364aa09df903b4717c403b431cd560f2aaf97f2581563a5f553d3c303aef1c7bf8afe52f9c450ea34f976cbc44fec113992a1
SSDEEP

786432:ruJJIS/nh9Hj7jVxaCpehU27fU0/gPU5EZVMRPREKyUiQsqIgn:rKJxLD7fdeXDgPtVS+KiQTRn

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/7tsp_gui_2019_edition_by_devillnside_ddb5026/7tsp GUI v0.6(2019).ee	upx

AutoIT Executable 1 IoCs

AutoIT scripts compiled to PE executables.

resource	yara_rule
static1/unpack002/out.upx	autoit_exe

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/7tsp_gui_2019_edition_by_devillnside_ddb5026/7tsp GUI v0.6(2019).ee
unpack002/out.upx

Files

Archive.zip
.zip
7tsp_gui_2019_edition_by_devillnside_ddb5026/7tsp GUI v0.6(2019).ee
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 588KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 263KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 145KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512KB - Virtual size: 512KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
7tsp_gui_2019_edition_by_devillnside_ddb5026/How To.txt
7tsp_gui_2019_edition_by_devillnside_ddb5026/Renam .ee to .exe.txt
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Extra/preview.bmp
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Pack.ini
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/DDORes.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/DeviceCenter.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/DevicePairing.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/DevicePairingFolder.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/DevicePairingWizard.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/Display.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/FileHistory.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/HelpPane.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/SensorsCpl.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/SmartScreenSettings.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/SndVolSSO.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/SyncCenter.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/UserAccountControlSettings.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/WorkFolders.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/WorkFoldersControl.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/WorkFoldersRes.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/aclui.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/appwiz.cpl.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/basebrd.dll.mui.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/basebrd.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/batmeter.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/changepk.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/cleanmgr.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/cscui.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/devmgr.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/dmdskres.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/dsui.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/explorer.exe.mui.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/explorerframe.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/fontext.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/hdwwiz.cpl.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/hdwwiz.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/imageres.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/imagesp1.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/joy.cpl.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/magnify.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/main.cpl.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/mmres.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/mmsys.cpl.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/modemui.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/ndadmin.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/networkexplorer.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/newdev.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/newdev.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/pnidui.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/regedit.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/setupapi.dll.mui.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/shell32.dll.mui.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/shellbrd.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/stobject.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/themecpl.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/themeui.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/winver.exe.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/wuapi.dll.res
7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/zipfldr.dll.res
__MACOSX/._7tsp_gui_2019_edition_by_devillnside_ddb5026
__MACOSX/._7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd
__MACOSX/7tsp_gui_2019_edition_by_devillnside_ddb5026/._7tsp GUI v0.6(2019).ee
__MACOSX/7tsp_gui_2019_edition_by_devillnside_ddb5026/._How To.txt
__MACOSX/7tsp_gui_2019_edition_by_devillnside_ddb5026/._Renam .ee to .exe.txt
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/._Extra
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/._Pack.ini
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/._Resources
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Extra/._preview.bmp
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._DDORes.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._DeviceCenter.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._DevicePairing.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._DevicePairingFolder.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._DevicePairingWizard.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._Display.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._FileHistory.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._HelpPane.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._SensorsCpl.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._SmartScreenSettings.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._SndVolSSO.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._SyncCenter.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._UserAccountControlSettings.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._WorkFolders.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._WorkFoldersControl.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._WorkFoldersRes.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._aclui.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._appwiz.cpl.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._basebrd.dll.mui.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._basebrd.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._batmeter.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._changepk.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._cleanmgr.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._cscui.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._devmgr.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._dmdskres.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._dsui.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._explorer.exe.mui.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._explorerframe.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._fontext.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._hdwwiz.cpl.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._hdwwiz.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._imageres.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._imagesp1.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._joy.cpl.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._magnify.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._main.cpl.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._mmres.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._mmsys.cpl.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._modemui.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._ndadmin.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._networkexplorer.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._newdev.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._newdev.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._pnidui.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._regedit.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._setupapi.dll.mui.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._shell32.dll.mui.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._shellbrd.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._stobject.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._themecpl.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._themeui.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._winver.exe.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._wuapi.dll.res
__MACOSX/7tsp_updatedsevenifier_winver_fix_by_luximoz_dg1sqmd/Resources/._zipfldr.dll.res

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 588KB

UPX1 Size: 263KB - Virtual size: 264KB

.rsrc Size: 145KB - Virtual size: 148KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 512KB - Virtual size: 512KB

.rdata Size: 54KB - Virtual size: 54KB

.data Size: 26KB - Virtual size: 105KB

.rsrc Size: 152KB - Virtual size: 152KB

UPX0
Size: - Virtual size: 588KB

UPX1
Size: 263KB - Virtual size: 264KB

.rsrc
Size: 145KB - Virtual size: 148KB

.text
Size: 512KB - Virtual size: 512KB

.rdata
Size: 54KB - Virtual size: 54KB

.data
Size: 26KB - Virtual size: 105KB

.rsrc
Size: 152KB - Virtual size: 152KB