3eba4f592a6f4499bcdf435a5b3786c50810be92078153a917c5e5503e571a31

Sharing

Copy URL

Twitter E-mail

General

Target

3eba4f592a6f4499bcdf435a5b3786c50810be92078153a917c5e5503e571a31
Size

13.2MB
MD5

a54f0a2b20a71558fb2a8769ee512213
SHA1

581f39d1cfefb2c6e7a566f9fc0879f7c6986144
SHA256

3eba4f592a6f4499bcdf435a5b3786c50810be92078153a917c5e5503e571a31
SHA512

7a83955bce38fff5a50c789a3e8cee8d2a03ecc143919a98421c976f1c2f8763bd413fdbf4564f2f10aeb7111bdd6a0a57d577ee8424153292850c21b41dfb1c
SSDEEP

393216:cukeCbTM8PA2V70i6j5esRorgmpOBs59CPlyMZdHPOeVsjyAVs:IFbTMHRorgm+mKaxdK

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/սڵ.exe	upx

Files

3eba4f592a6f4499bcdf435a5b3786c50810be92078153a917c5e5503e571a31
.zip
item.atz
sprite/W1970.ATZ
sprite/W1972.ATZ
sprite/W1980.Atz
sprite/W1983.Atz
sprite/d120.atz
sprite/d121.atz
sprite/d122.atz
sprite/d123.atz
sprite/d124.atz
sprite/d125.atz
sprite/d140.atz
sprite/d141.atz
sprite/d142.atz
sprite/d143.atz
sprite/d144.atz
sprite/d145.atz
sprite/g430.atz
sprite/g431.atz
sprite/g432.atz
sprite/g433.atz
sprite/g434.atz
sprite/g435.atz
sprite/i1100.atz
sprite/i1101.atz
sprite/i1102.atz
sprite/i1103.atz
sprite/i1104.atz
sprite/i1105.atz
sprite/j1060.atz
sprite/j1063.atz
sprite/j1950.atz
sprite/j1952.atz
sprite/j1960.atz
sprite/j1963.atz
sprite/j1970.atz
sprite/j1972.atz
sprite/j1980.atz
sprite/j1983.atz
sprite/j1990.atz
sprite/j1991.atz
sprite/q120.atz
sprite/q121.atz
sprite/q122.atz
sprite/q123.atz
sprite/q124.atz
sprite/q125.atz
sprite/q140.atz
sprite/q141.atz
sprite/q142.atz
sprite/q143.atz
sprite/q144.atz
sprite/q145.atz
sprite/t430.atz
sprite/t431.atz
sprite/t432.atz
sprite/t433.atz
sprite/t434.atz
sprite/t435.atz
sprite/t990.Atz
sprite/t991.Atz
sprite/t992.Atz
sprite/t993.Atz
sprite/t994.Atz
sprite/t995.Atz
sprite/v1100.atz
sprite/v1101.atz
sprite/v1102.atz
sprite/v1103.atz
sprite/v1104.atz
sprite/v1105.atz
sprite/w1060.atz
sprite/w1063.atz
sprite/w1950.atz
sprite/w1952.Atz
sprite/w1960.atz
sprite/w1963.atz
sprite/w1990.atz
sprite/w1991.atz
sprite/w340.atz
sprite/w342.atz
sprite/y40.Atz
sprite/y41.Atz
sprite/z1.atz
սڵ.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 428KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 5.3MB - Virtual size: 5.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 440KB - Virtual size: 437KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 428KB

UPX1 Size: 5.3MB - Virtual size: 5.3MB

.rsrc Size: 8KB - Virtual size: 12KB

Headers

File Characteristics

Sections

.text Size: 440KB - Virtual size: 437KB

.rdata Size: 5.1MB - Virtual size: 5.1MB

.data Size: 60KB - Virtual size: 208KB

.rsrc Size: 24KB - Virtual size: 23KB

UPX0
Size: - Virtual size: 428KB

UPX1
Size: 5.3MB - Virtual size: 5.3MB

.rsrc
Size: 8KB - Virtual size: 12KB

.text
Size: 440KB - Virtual size: 437KB

.rdata
Size: 5.1MB - Virtual size: 5.1MB

.data
Size: 60KB - Virtual size: 208KB

.rsrc
Size: 24KB - Virtual size: 23KB