Malicious
Malicious

5964ecc729d220d84df2965ba6bd73ef

AutoIt Compiled Script
|
MD5: 5964ecc729d220d84df2965ba6bd73ef
|
Size: 741.38 KB
|
application/x-dosexec

Print
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
5964ecc729d220d84df2965ba6bd73ef
Sha1
d68f8d0cb575ada4a0e2c718554aee505fd050d9
Sha256
800bd73ca92a135c6484e12e92ea1ed0ad33d33a01228e9ad23b0062d6a57024
Sha384
9baa2fc6d9df47a5790857dc0f08f3e0c8935a0ea1cfe2c77555e9bc5c0b7a1f02b03b14d1b5deb8923e2b451dad6fe2
Sha512
e2646e9701a0f0e7006a21a7487f1f254a271f3a1d5778cad0ba31bbeedc4682efe7602147fd902958132848837c6df4f8cfdc8da65a03f0d2b911a9e7a11cba
SSDeep
12288:oz7hU5I5yuNHIgzSFKxWltRohBfSTso93U/aJ7ED97yH8XlJKVExDQ9qZ3dOYcqp:of+iN57Gtene3wVRycnK7MZYYZ2LK
TLSH
05F423969AC04D76C5D063708432CC5489B83970EE1A732F4B1EF63F687079B9E67E19

PeID

Microsoft Visual C++ v6.0 DLL
Packer=UPX Compresor..Gratuito... www.upx.sourceforge.net
UPX -> www.upx.sourceforge.net
UPX Modified >> *$igBy Ahmed18
UPX v0.89.6 - v1.02 / v1.05 -v1.24 -> Markus & Laszlo (overlay)]
UPX v1.25 (Delphi) Stub
UPX v3.0
File Structure
5964ecc729d220d84df2965ba6bd73ef
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
UPX0
UPX1
.rsrc
Resources
RT_ICON
ID:0001
ID:2057
ID:0002
ID:2057
ID:0003
ID:2057
ID:0004
ID:2057
ID:0005
ID:2057
ID:0006
ID:2057
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
ID:000A
ID:2057
ID:000B
ID:2057
RT_MENU
ID:00A6
ID:2057
RT_RCDATA
ID:0000
ID:0
RT_GROUP_CURSOR4
ID:0063
ID:2057
ID:00A2
ID:2057
ID:00A4
ID:2057
ID:00A9
ID:2057
RT_VERSION
ID:0001
ID:2057
RT_MANIFEST
ID:0001
ID:2057
autFA8F.tmp.tok
Malicious
[Cleaned].au3
Malicious
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
5964ecc729d220d84df2965ba6bd73ef (741.38 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙