1ffc1548f3107ca9b75247750791113a0c6b6aca9f128bfbf346a4d65de59d44[.]zip[.]zip

Sharing

Target

1ffc1548f3107ca9b75247750791113a0c6b6aca9f128bfbf346a4d65de59d44.zip.zip
Size

830KB
MD5

ac49436a6249c55c324eb4f57628a1c6
SHA1

77467ab14d419b4dc1440c8c90c299451efa31b9
SHA256

d229fb957bf3f875e1136b883ecb0c54322d8371d72aa6aa376991780483adf5
SHA512

8ea812009cfe06a4731154665e55e410ec167f8a0910b69bdd68df511889cc2a490bd32ba558e4584e24f66dfafcd7a28e55d0905de459f321ea9a4a10fac342
SSDEEP

12288:CBH03QxtmukTr8oexvWFlQ9Sx25UpkRaG1cr2JfvMwxJSK/:CBUAtmrTf+U985DMG1S+GK/

Score

7^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack002/i2cWinSetup.exe	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/i2cWinSetup.exe

1ffc1548f3107ca9b75247750791113a0c6b6aca9f128bfbf346a4d65de59d44.zip.zip
.zip

Password: infected
1ffc1548f3107ca9b75247750791113a0c6b6aca9f128bfbf346a4d65de59d44.zip
.zip
I2C.pcb
accel_uc.log
i2cWinSetup.exe
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 224KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE