Overview

overview

10

Static

static

10

fb240f8a4a...07.exe

windows10-1703-x64

10

fb240f8a4a...07.exe

windows10-2004-x64

10

fb240f8a4a...07.exe

windows11-21h2-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    fb240f8a4aa481c107c8dc11f1831558f109838f7e887247383fca779f562607.zip

  • Size

    1.3MB

  • MD5

    559999bcb03ac63aec1358ba29afd57f

  • SHA1

    caef3b01b3ae6fc4a60e4dd09c737d888cd2383e

  • SHA256

    b7e53f4caa02a64fa0335166f03a9f45554481dbd62442046143ae9b8550aa33

  • SHA512

    5f18ac78e6842ab5200c9206e22189e5cb7647a243c74c8ad5d1f00130a0e6f30599f01296a08ba1ff1c3c2809f163e3e3422b8da19cc0b850a02e93ce9a53c4

  • SSDEEP

    24576:TxAMbaIAHp6uv9QfKPgtQSXDl+fDP8RRK9LWOIDFMW3UtEULZ5gGOaU:TxAmaNp5v9QCIFMfDPOQ9WD6W3MjLfg1

Score
10/10
aspackv2fredy

Malware Config

Signatures

  • Detects Fredy Stealer Payload 1 IoCs

    Fredy Stealer is an infostealer written in C++.

  • Fredy family
    fredy
  • ASPack v2.12-2.42 1 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • fb240f8a4aa481c107c8dc11f1831558f109838f7e887247383fca779f562607.zip
    .zip

    Password: infected

  • fb240f8a4aa481c107c8dc11f1831558f109838f7e887247383fca779f562607.exe
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections