45f10a0333acdc5dfd677d9a448e95d09b70021c973dbe83651eb67523a2ff54 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45f10a0333acdc5dfd677d9a448e95d09b70021c973dbe83651eb67523a2ff54
Size

198KB
MD5

de3d1a5ec5f47e87826ab34a81c1dcbb
SHA1

a86e7b8744885c466a3214be4f2393df0295de79
SHA256

45f10a0333acdc5dfd677d9a448e95d09b70021c973dbe83651eb67523a2ff54
SHA512

d91433e8aef21b4310c87f4cc53636184b29f14e9441a0fba93984c755a0d74655b1c45987c9ee4e5ed39ccd6870179a30688e72bd39b22d175d01b9b2edc88d
SSDEEP

6144:4ytndfiTui4NELSxa855wQZjMK/8tLWVf:dVuOELSEgwR68tGf

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/JXJQQv1/Config.exe	upx

Files

45f10a0333acdc5dfd677d9a448e95d09b70021c973dbe83651eb67523a2ff54
.zip
JXJQQv1/77169.orgʹð˵.txt
JXJQQv1/77169.org˵.htm
.html
JXJQQv1/Config.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 296KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 190KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
JXJQQv1/login.asp
.vbs
JXJQQv1/ĺڿͬ.url
.url