General
Structural Analysis
Config.0
Yara Rules2
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | ca1eec441b0135f39f39d3b43a9e9bf0
|
| Sha1 | 7472239484e11a8010783f7834d07dbf31bf4e5e
|
| Sha256 | 656c81c4a10ad5f4a732df57dc8922501cd8d5cb80c29983d7f1371574e1ca45
|
| Sha384 | 36893aab13640704a93773718685a2601fd8205a0aa7a91bac2005c7d9eaf2ea029414ee9f9b7a73af0f7bbea35d9df6
|
| Sha512 | b184abcd9aaf9b02349d98bce3832dd7ba4164fd28c1a4b63a6251b64785619d38e97825e00bcdfee37e0fa7b7dd43f179889ef5dafc8eeeffee0180c4617080
|
| SSDeep | 98304:+pIgupK6/4YhzqtIauBqcJyyhaTvWYWODTIz5+oExZTuveXV:+pJup//4dpcAyhaDWWJZSvC
|
| TLSH | 93463383339048F8D799C0318E0EE75912F2F75B18445E8BFE6A1F842ED35E6215B6E9
|
PeID
Microsoft Visual C++
Microsoft Visual C++ 5.0
Microsoft Visual C++ 6.0 DLL (Debug)
Microsoft Visual C++ v6.0
Microsoft Visual C++ v6.0
Microsoft Visual C++ v6.0 DLL
UPolyX 0.3 -> delikon
File Structure
ca1eec441b0135f39f39d3b43a9e9bf0.OURDUBDV.exe
Malicious
7z-stream @ 0x0002DF4B.7z
Malicious
Kreanggaig.ix
Shuck.rg
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
PYTHONSCRIPT
ID:0001
ID:0
RT_ICON
ID:000A
ID:0
ID:000B
ID:0
ID:000C
ID:0
ID:000D
ID:0
ID:000E
ID:0
ID:000F
ID:0
ID:0-preview.png
ID:0010
ID:0
ID:0011
ID:0
ID:0012
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:0
python38.dll
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
RT_STRING
ID:003F
ID:1033
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0002
ID:1033
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.data
.idata
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:1033
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
Resources
RT_ICON
ID:0001
ID:1049
ID:0002
ID:1049
ID:0003
ID:1049
ID:0004
ID:1049
ID:0005
ID:1049
RT_GROUP_CURSOR4
ID:0065
ID:1049
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
ca1eec441b0135f39f39d3b43a9e9bf0.OURDUBDV.exe (5.36 MB)
File Structure
ca1eec441b0135f39f39d3b43a9e9bf0.OURDUBDV.exe
Malicious
7z-stream @ 0x0002DF4B.7z
Malicious
Kreanggaig.ix
Shuck.rg
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
PYTHONSCRIPT
ID:0001
ID:0
RT_ICON
ID:000A
ID:0
ID:000B
ID:0
ID:000C
ID:0
ID:000D
ID:0
ID:000E
ID:0
ID:000F
ID:0
ID:0-preview.png
ID:0010
ID:0
ID:0011
ID:0
ID:0012
ID:0
RT_GROUP_CURSOR4
ID:0001
ID:0
RT_VERSION
ID:0001
ID:0
python38.dll
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
RT_STRING
ID:003F
ID:1033
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0002
ID:1033
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.data
.idata
.rsrc
.reloc
Resources
RT_VERSION
ID:0001
ID:1033
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
Resources
RT_ICON
ID:0001
ID:1049
ID:0002
ID:1049
ID:0003
ID:1049
ID:0004
ID:1049
ID:0005
ID:1049
RT_GROUP_CURSOR4
ID:0065
ID:1049
RT_VERSION
ID:0001
ID:1033
RT_MANIFEST
ID:0001
ID:1033
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.