General

  • Target

    d6f99a0cc11e32ea897bc97a319748ab.bin

  • Size

    558KB

  • MD5

    29a360e330aad66b2b5b4947a973e699

  • SHA1

    ce5da037244430628d3d5317cef75edf5d6221a0

  • SHA256

    455649189a1cfad01fcbb626a27061c25c610851c80d74e527dfbbf29617b553

  • SHA512

    e97ca4c5a68bdbe49524b4aadfa87783c9bc08c1c2adfd67da46e6043367479a2d6a0c60303aa8f275a0b0cfbe16c0dd14f49477e1dcb5184038820b5d5a0bce

  • SSDEEP

    12288:cUp5dfk+oxbYT5MH6dVOI/XkJyC3xl1Zblikqt2iLrMmcUCME7ErJI:coDfkT8TKoOE0/znYkqt2iLN4AI

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • d6f99a0cc11e32ea897bc97a319748ab.bin
    .zip

    Password: infected

  • fd9725ecc7ed625c2174660e7f51f647fff9474f4c21c8ed84e0608bbcc5a409.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections