b424cc02993285ecfb696234a8c6340e3aad23333e2306d0d111cf4dd507c4a9

Sharing

Copy URL Twitter E-mail

General

Target

b424cc02993285ecfb696234a8c6340e3aad23333e2306d0d111cf4dd507c4a9
Size

5.2MB
MD5

acaf94f03627fd1d066ac2cabbabcc51
SHA1

c4bb32a49b4507957434ef692a108f159df006e3
SHA256

b424cc02993285ecfb696234a8c6340e3aad23333e2306d0d111cf4dd507c4a9
SHA512

86c98facc83d8fc3bb4f2fffa364a2a30c2bdf22f9bb582c6d18018970d2ffef34aea23a2a3911493b7eec87ddb75cae8dacfed35625aea674088ce45360ae92
SSDEEP

98304:dfwjWIKftX9E4HzDR8M+m8MFirvzsVIrrmQduf7M4PA5d15IQgGByP:BwjEfZ9EGzt8MxsrrsurrNduY3qQgGe

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/Avp7Setup/Avp7Setup_20080709.exe	upx
static1/unpack003/SetupAssis.exe	upx

Files

b424cc02993285ecfb696234a8c6340e3aad23333e2306d0d111cf4dd507c4a9
.rar
Avp7Setup/Avp7Setup_20080709.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Avp7Setup/AvpGreen_SetupAssis.7z
.7z
SetupAssis.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 288KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 185KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 340KB - Virtual size: 339KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SetupAssis_Test.cmd
Avp7Setup/下载安装说明.txt
Avp7Setup/未来软件园-首页.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 68KB

UPX1 Size: 42KB - Virtual size: 44KB

.rsrc Size: 3KB - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 73KB - Virtual size: 72KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 3KB - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 288KB

UPX1 Size: 185KB - Virtual size: 188KB

.rsrc Size: 4KB - Virtual size: 8KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 340KB - Virtual size: 339KB

.rdata Size: 42KB - Virtual size: 42KB

.data Size: 9KB - Virtual size: 75KB

.rsrc Size: 3KB - Virtual size: 3KB

UPX0
Size: - Virtual size: 68KB

UPX1
Size: 42KB - Virtual size: 44KB

.rsrc
Size: 3KB - Virtual size: 4KB

.text
Size: 73KB - Virtual size: 72KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 3KB - Virtual size: 4KB

UPX0
Size: - Virtual size: 288KB

UPX1
Size: 185KB - Virtual size: 188KB

.rsrc
Size: 4KB - Virtual size: 8KB

.text
Size: 340KB - Virtual size: 339KB

.rdata
Size: 42KB - Virtual size: 42KB

.data
Size: 9KB - Virtual size: 75KB

.rsrc
Size: 3KB - Virtual size: 3KB