snesgt0218e[.]zip | Triage

Resubmissions

19/04/2023, 16:56

230419-vf595acb45 7

19/04/2023, 16:50

230419-vclfjsca84 7

19/04/2023, 16:45

230419-t9gyysca64 7

Sharing

Copy URL Twitter E-mail

General

Target

snesgt0218e.zip
Size

357KB
MD5

d54d6c5157ef013382aed2f2b1de5c7d
SHA1

3715361272d0c48edc92912b3b3e54ef35ca4010
SHA256

a87df773e029d10b1889de004a6cda390e37cc522cb5fc12f4e1b82ad9675623
SHA512

035ee1b95191524a23b42d1780c5fafc5688bcd57e98f86432e6ddeca98259932172a981f95a42ab3c11f7bc971f211b9e49e3c748ffac5a0766e502a011911b
SSDEEP

6144:4NsCED61+o7cPzUo4Jx+IVp1ZC89WnYEs7Rf0s3ZR7KncCTJN2n1DCglr3wN6LaM:4E+Qouzpmx+IV/ZC8ySis3ZkcCFNwyNW

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/snesgt.exe	upx

Files

snesgt0218e.zip
.zip
docs/readme.txt
plugin/lng_english.dll
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
plugin/lng_english_src_0215.zip
.zip
snesgt.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 876KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 341KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE