IP GRABBER AND DDOSER PACK V1[.]rar

General

Target

IP GRABBER AND DDOSER PACK V1.rar
Size

125KB
MD5

5a2230a999d6cb2b4455a16e519a0b36
SHA1

3272cdc141cfd8f09197c8853613af6b66187054
SHA256

eff6aad942e1c8aa4e241e0f984f76886bc17d8eb39662ddeca273304c94277c
SHA512

be3ebe5f079b50895c9674c5ef1379238afda7c9b306a62bb2a55bfbe3043e07b0d2ccf6a006ceacc23457b1d7f63b1a3b89c1f6552a88a07821515c75bd8b0c
SSDEEP

3072:HpE7hwJFvuvFzZ3+gQPvfmA/FB1V3XsaqcMxLvXL:H27eJ4vFzZ3+gQPB9BT8acLvXL

Score

7^/10

upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/IP GRABBER AND DDOSER PACK V1/IP GRABBER AND DDOSER PACK V1/ddoser.exe	upx
static1/unpack001/IP GRABBER AND DDOSER PACK V1/IP GRABBER AND DDOSER PACK V1/website ip grabber.exe	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/IP GRABBER AND DDOSER PACK V1/IP GRABBER AND DDOSER PACK V1/ddoser.exe
unpack001/IP GRABBER AND DDOSER PACK V1/IP GRABBER AND DDOSER PACK V1/website ip grabber.exe

IP GRABBER AND DDOSER PACK V1.rar
.rar
IP GRABBER AND DDOSER PACK V1/IP GRABBER AND DDOSER PACK V1/INSTRUCTIONS READ ME!.txt
IP GRABBER AND DDOSER PACK V1/IP GRABBER AND DDOSER PACK V1/ddoser.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IP GRABBER AND DDOSER PACK V1/IP GRABBER AND DDOSER PACK V1/website ip grabber.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 240KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 205KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE