cecdf69d18c192fb1bd2a7dcf6f9d271b70b5a46edaca02cc736dff5abdc1918

Sharing

Copy URL Twitter E-mail

General

Target

cecdf69d18c192fb1bd2a7dcf6f9d271b70b5a46edaca02cc736dff5abdc1918
Size

1.0MB
MD5

1ed7b951eb820863814ca7e4d660b0d1
SHA1

1cd178d42c1d32f4e735c1123cd0f0da059a7cad
SHA256

cecdf69d18c192fb1bd2a7dcf6f9d271b70b5a46edaca02cc736dff5abdc1918
SHA512

326cff86a0a898bb8781f334b7f6e005e92a3e72581562da111430966c4d8fc74cc3d83e1022ba76c68de45bf78b5ea4bd13faa2b6b8f05d7c8d77f75f194b1c
SSDEEP

24576:vPESDPUiiWTzF6212tNZDQstoi9+2Zlnqunve2U78fOy1YRC7I5Q1JxCrE:XEhK1At3n9ppRUofPYR9udZ

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack002/˵˵ɾ޸.exe	upx
static1/unpack002/ɾѶ΢԰棩.exe	upx

Files

cecdf69d18c192fb1bd2a7dcf6f9d271b70b5a46edaca02cc736dff5abdc1918
.rar .zip
一键删除空间说说无验证码/空间说说.zip
.zip
˵˵ɾ޸.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 668KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 327KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ffblog
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ɾѶ΢԰棩.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1020KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 728KB - Virtual size: 728KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 668KB

UPX1 Size: 327KB - Virtual size: 328KB

.rsrc Size: 8KB - Virtual size: 24KB

.ffblog Size: 7KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 1020KB

UPX1 Size: 728KB - Virtual size: 728KB

.rsrc Size: 8KB - Virtual size: 12KB

UPX0
Size: - Virtual size: 668KB

UPX1
Size: 327KB - Virtual size: 328KB

.rsrc
Size: 8KB - Virtual size: 24KB

.ffblog
Size: 7KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB

UPX0
Size: - Virtual size: 1020KB

UPX1
Size: 728KB - Virtual size: 728KB

.rsrc
Size: 8KB - Virtual size: 12KB