96cf03df6e29973b83a9842b5055ddc2f5dff478b047a0cf9024f4e06604365b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96cf03df6e29973b83a9842b5055ddc2f5dff478b047a0cf9024f4e06604365b
Size

1.0MB
MD5

274a47c7e97b733f1d4ea468c9b39fe9
SHA1

34e9c3848ec2bc1f6c7de96de8a98cfcc684037c
SHA256

96cf03df6e29973b83a9842b5055ddc2f5dff478b047a0cf9024f4e06604365b
SHA512

7c942625ca9bd7aafcfcbe54dd4e5e6118c594c99ea226ada1a5724560d3d19b1e65e3d67e0b58da12240f3a63c3ad4b5b9b219120f2a358c40aa39ccbf71543
SSDEEP

24576:SRQtCfODa5g8Z9lUecrX1de54ou2A6dFOTne938TM:SRQjaRLJcrX1g54opF4neB8Q

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/seerfz.exe	upx

Files

96cf03df6e29973b83a9842b5055ddc2f5dff478b047a0cf9024f4e06604365b
.zip
seerfz.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.8MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 988KB - Virtual size: 988KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 139KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ucbugվ-www.ucbug.cc.url
.url
ucbugϷ-www.ucbug.com.url
.url
롾ucbugȺ.url
.url
˵.txt