General

  • Target

    3bfd2e503020274ee74f3d2015317fd549acc64eb760afa07c0bac637a3110dd.zip

  • Size

    4.4MB

  • MD5

    8e8563df50b12203892c404c81b614c3

  • SHA1

    61be6a2e931d3ef6ad3e3d90bf1d167c8c9d9d7c

  • SHA256

    3bfd2e503020274ee74f3d2015317fd549acc64eb760afa07c0bac637a3110dd

  • SHA512

    899cb6dd89955c4f64734727dc3fe85b61ca32080c12d5260162be1309381ff2f08e6f77d3fed6b22fcfa06bc7012a7dd43f8d2613fbfa41fbb457b9753f3283

  • SSDEEP

    98304:jS1QO3ecStq/hXG67+JgFEohAe83QoHkIiTyyLJ6drp8gAu:jU3ecbhXG6KJgOe83HHkmyCrpD7

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 5 IoCs

    Detects file using ACProtect software.

  • UPX packed file 5 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 10 IoCs

    Checks for missing Authenticode signature.

Files

  • 3bfd2e503020274ee74f3d2015317fd549acc64eb760afa07c0bac637a3110dd.zip
    .zip
  • All-In-One.exe
    .exe windows:5 windows x86 arch:x86

    536c0336bf2ae0c077da66c0a0c192d5


    Code Sign

    Headers

    Imports

    Sections

  • External/Components/nspr4.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • External/Components/nss3.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • External/Components/plc4.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • External/Components/plds4.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • External/Components/softokn3.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • External/ComponentsExt/api-ms-win-crt-conio-l1-1-0_not.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-convert-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-environment-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-filesystem-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-heap-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-locale-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-math-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-multibyte-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-runtime-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-stdio-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-string-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-time-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/api-ms-win-crt-utility-l1-1-0.dll
    .dll windows:10 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • External/ComponentsExt/freebl3.dll
    .dll windows:6 windows x86 arch:x86

    2c54251b196d9e0cc804a7061f60558c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • External/ComponentsExt/mozglue.dll
    .dll windows:6 windows x86 arch:x86

    aeefa1230e6cf7c323562e45433b24dd


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • External/ComponentsExt/msvcp140.dll
    .dll windows:6 windows x86 arch:x86

    6033404985b7d360f94b5f6fbed98789


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • External/ComponentsExt/nss3.dll
    .dll windows:6 windows x86 arch:x86

    2f6410b337cbd1ca3a8bf343e95c41ee


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • External/ComponentsExt/softokn3.dll
    .dll windows:6 windows x86 arch:x86

    4d153c0cea0b76890c21127ac6dbd559


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • External/ComponentsExt/vcruntime140.dll
    .dll windows:6 windows x86 arch:x86

    fa315c9bc46ab41d4bc4e3f94023067f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • License.XenArmor
  • XenManager.dll
    .dll windows:5 windows x86 arch:x86

    4ee46df13e0ef0386ae293e981482ff6


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • settings.db
  • sss.vbs
    .vbs
  • www.vbs
    .vbs