General

  • Target

    Dest.rar

  • Size

    41.6MB

  • MD5

    683645ae624a80c482e776a8a2cfe3ad

  • SHA1

    de874d832b6e2f5b6724ca49db07a4cf638f8692

  • SHA256

    ceba879db245f9a04c51607671ceeb214afbf10ea12f59bbea9202f94eff65e9

  • SHA512

    66a1bc69a08ca51bd64cbb73bae4f3fde5c63dc8e2838190a5d683318361d21cf36f449a026d9d5939f8cb472c31ab114371a43a0a613e8c130f4a5b4d104153

  • SSDEEP

    786432:jz8VjkvZZ8JeE7SpRTAk8xxeWFAO+hfMVQWm+aE7VUfJDazodepsyqdTiGuWcLBh:jz8SvPbtOjdVQWqEU0ijJJiGuWUj1

Score
5/10
upx

Malware Config

Signatures

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • Dest.rar
    .rar
  • Dest/HorrorBob2.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • Dest/HorrorRansom 1.0 Final.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • Dest/HorrorTrojan Ultimate Edition.exe
    .exe windows:4 windows x86 arch:x86

    a8f9817be32c1d5589680a5066ebff5d


    Headers

    Imports

    Sections

  • Dest/HorrorTrojan123.exe
    .exe windows:5 windows x86 arch:x86

    ae9f6a32bb8b03dce37903edbc855ba1


    Headers

    Imports

    Sections

  • Dest/Start.bat
  • Dest/covid20.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections