Malicious
efccfd58b760dcff6c532418276f4104
AutoIt Compiled Script | MD5: efccfd58b760dcff6c532418276f4104 | Size: 1.16 MB | application/x-dosexec
AutoIt Compiled Script
MD5: efccfd58b760dcff6c532418276f4104
Size: 1.16 MB
application/x-dosexec
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | efccfd58b760dcff6c532418276f4104
|
| Sha1 | 5aa9aa3e50640234095a24197362148c059c07ce
|
| Sha256 | 9b42e636d9d5dcf4220a523e537dcd58d335ecf960eae9fb52d3ddbe5e2a7a46
|
| Sha384 | ae1d8d0f0c1dc5c6183f801df0172ae4709bbaaa15860c2f716fbd635596b465b1b333d22cb0c709cefe6a99bb74cebd
|
| Sha512 | 37623e62ddb75a528b610459b68b0d2439792defb35a6370cd7f8030151f957ba12b3afab82463e88723cdb64b79d74056bc277b65620110e80e2ce139df58ed
|
| SSDeep | 24576:Jf+iN57Gtene3Hh/V0AA2Ro04tDzE/ZI4:FLXKtene3BzA2Ro0is
|
| TLSH | 1635E0427784DF50C11F14B1D8A3C6F85327BE40DD015BDB76C9FF2A78B22AA6AA1583
|
PeID
Microsoft Visual C++ v6.0 DLL
UPX -> www.upx.sourceforge.net
UPX Modified >> *$igBy Ahmed18
UPX Protector v1.0x
UPX v0.89.6 - v1.02 / v1.05 -v1.24 -> Markus & Laszlo (overlay)]
UPX v1.25 (Delphi) Stub
UPX v3.0
File Structure
efccfd58b760dcff6c532418276f4104
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
UPX0
UPX1
.rsrc
Resources
RT_ICON
ID:0001
ID:2057
ID:0002
ID:2057
ID:0003
ID:2057
ID:0004
ID:2057
ID:0005
ID:2057
ID:0006
ID:2057
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
RT_MENU
ID:00A6
ID:2057
RT_RCDATA
ID:0000
RT_GROUP_CURSOR4
ID:0063
ID:2057
ID:00A2
ID:2057
ID:00A4
ID:2057
ID:00A9
ID:2057
RT_VERSION
ID:0001
ID:2057
RT_MANIFEST
ID:0001
ID:2057
Informations
|
Name0 | Value |
|---|---|
| Info | PE Detect: PeReader OK (file layout) |
efccfd58b760dcff6c532418276f4104 (1.16 MB)
File Structure
efccfd58b760dcff6c532418276f4104
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
UPX0
UPX1
.rsrc
Resources
RT_ICON
ID:0001
ID:2057
ID:0002
ID:2057
ID:0003
ID:2057
ID:0004
ID:2057
ID:0005
ID:2057
ID:0006
ID:2057
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
RT_MENU
ID:00A6
ID:2057
RT_RCDATA
ID:0000
RT_GROUP_CURSOR4
ID:0063
ID:2057
ID:00A2
ID:2057
ID:00A4
ID:2057
ID:00A9
ID:2057
RT_VERSION
ID:0001
ID:2057
RT_MANIFEST
ID:0001
ID:2057
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.