f21002b4342ea61255fc8099749981ef601c4350bd141d1b451cfca6d9054cbc

Sharing

Copy URL Twitter E-mail

General

Target

f21002b4342ea61255fc8099749981ef601c4350bd141d1b451cfca6d9054cbc
Size

294KB
MD5

12973e6a4960b7b6c38008a3c3ea02cd
SHA1

081869a05f3df824a6e5f8e64db6bd821f5d8fea
SHA256

f21002b4342ea61255fc8099749981ef601c4350bd141d1b451cfca6d9054cbc
SHA512

8b44df500572b62dd5f2a3044ef8a430b26542add352266f08b3b83b3f5eddba6893d1feb520f27c6b7d7c01e72d09f06f58ba4396e469255f7799b4fe070757
SSDEEP

6144:JHN9a/naQ4ZLXJejzp6N13CQfNWlvyabwSrlirC8:Jt9w4Fwg3CV9wr9

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/游侠QQ电脑管家代挂王v1.0/游侠QQ电脑管家代挂王v1.0.exe	upx

Files

f21002b4342ea61255fc8099749981ef601c4350bd141d1b451cfca6d9054cbc
.rar
下载说明.txt
数码资源网.url
.url
游侠QQ电脑管家代挂王v1.0/使用说明.txt
游侠QQ电脑管家代挂王v1.0/游侠QQ电脑管家代挂王v1.0.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 500KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 257KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 488KB - Virtual size: 486KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
游侠QQ电脑管家代挂王v1.0/游侠VIP特权.txt
游侠QQ电脑管家代挂王v1.0/软件界面.jpg
.jpg

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 500KB

UPX1 Size: 257KB - Virtual size: 260KB

.rsrc Size: 29KB - Virtual size: 32KB

Headers

File Characteristics

Sections

.text Size: 488KB - Virtual size: 486KB

.rdata Size: 92KB - Virtual size: 91KB

.data Size: 60KB - Virtual size: 133KB

.rsrc Size: 32KB - Virtual size: 28KB

UPX0
Size: - Virtual size: 500KB

UPX1
Size: 257KB - Virtual size: 260KB

.rsrc
Size: 29KB - Virtual size: 32KB

.text
Size: 488KB - Virtual size: 486KB

.rdata
Size: 92KB - Virtual size: 91KB

.data
Size: 60KB - Virtual size: 133KB

.rsrc
Size: 32KB - Virtual size: 28KB