c3cdf81bd2dbcf63124816f22035ad3382e0bc057a08348dcac986ad2844e1cf

General

Target

c3cdf81bd2dbcf63124816f22035ad3382e0bc057a08348dcac986ad2844e1cf
Size

605KB
MD5

f12e672f75e0cfd36a38668a2a38f4a0
SHA1

050aa08ce33ed3ba58c77732ecd901bb8d645b90
SHA256

c3cdf81bd2dbcf63124816f22035ad3382e0bc057a08348dcac986ad2844e1cf
SHA512

e8c0e8b7015f0d07fdda27c9906e18495881ce689ee8be01f7ce9c8352cb402a8df491d5fa80b3624f291e008c959567d58ced514384f8db1634e25e0980670f
SSDEEP

12288:gYpUsluzTrcCbA5bDWq0755t5cWvPUks5vdlpDmwdXCvcBCs1XaWVrzA2n7JGA:5eslubcC5n75f5c/p3ucBX1hvAOT

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/Google翻译修复工具_1.3.exe	upx

Files

c3cdf81bd2dbcf63124816f22035ad3382e0bc057a08348dcac986ad2844e1cf
.zip
Google翻译修复工具_1.3.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 562KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 854KB - Virtual size: 854KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 270KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
更新日志.txt

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.0MB

UPX1 Size: 562KB - Virtual size: 564KB

.rsrc Size: 92KB - Virtual size: 92KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 854KB - Virtual size: 854KB

.rdata Size: 270KB - Virtual size: 270KB

.data Size: 84KB - Virtual size: 289KB

.rsrc Size: 91KB - Virtual size: 90KB

.reloc Size: 46KB - Virtual size: 45KB

UPX0
Size: - Virtual size: 1.0MB

UPX1
Size: 562KB - Virtual size: 564KB

.rsrc
Size: 92KB - Virtual size: 92KB

.text
Size: 854KB - Virtual size: 854KB

.rdata
Size: 270KB - Virtual size: 270KB

.data
Size: 84KB - Virtual size: 289KB

.rsrc
Size: 91KB - Virtual size: 90KB

.reloc
Size: 46KB - Virtual size: 45KB