Boost Bot [ v1[.]9[.]1 ][.]zip | Triage

Sharing

General

Target

Boost Bot [ v1.9.1 ].zip
Size

49.0MB
MD5

96d0342478c18f18194325ccff5cbb40
SHA1

0fd9c0a84abfdc033b39224f9a7ad8c82cc61d2b
SHA256

3ab51907d0c011d214b12e680e4bf1abda940d0c067336764fb5e09aa3ce0256
SHA512

46084ad9b70c6b5c9d2aa59feede45fb42d40cc5a05572b051b458457f4fb65c66df96ac14193d15578452b8d95b7e050beec77eff71533c99b4097d4cf5553a
SSDEEP

786432:fV9zSlYaCm6qgYGEJcLqNq/ZjaQjMUzCUFbqzTwxzfZlxZ455JEBlRyXSCs7:SlQm6qgOoTZZMfYbqfwblx46nUlW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Boost Bot.exe

Files

Boost Bot [ v1.9.1 ].zip
.zip
Boost Bot.exe
.exe windows:0 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

;::::; ;::::; :; ;:::::' :; ;:::::; ;. ,:::::' ; OOO\ ::::::; ; OOOOO\ ;:::::; ; OOOOOOOO ,;::::::; ;'

Sections

Knox01
Size: 4.5MB - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Knox01
Size: 46.6MB - Virtual size: 46.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Knox01
Size: 96KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
boosts.json
config.yaml
data/failed_tokens.json
run.bat
setup_guide.md