580f1b0102064f75eed0c76f6fa2423d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

580f1b0102064f75eed0c76f6fa2423d
Size

131KB
MD5

580f1b0102064f75eed0c76f6fa2423d
SHA1

47311f7671a07ff595435cc383f413552cfd4540
SHA256

3150a41f2426d5575805b27300f3f7dff6d459181c07d1e7514755d418dbc0a7
SHA512

a08dd1551bacdaebce5e4ff59278ed1be5c43be7693be1dd13e8ebcea7229c58d1f5a9210f1dc6173d34c3e168c3e0f73c19b3e76e9128f078f1d7689bad8380
SSDEEP

3072:/CjjjQxOGtufAhlS3k+/9M15osPZpYvdi8+vecul:/CPjQvtu4htvDrPZGvd5+pul

Score

10^/10

upx

Malware Config

Signatures

Nirsoft 1 IoCs

resource	yara_rule
static1/unpack002/out.upx	Nirsoft

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/chromepass/ChromePass.exe	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/chromepass/ChromePass.exe
unpack002/out.upx

Files

580f1b0102064f75eed0c76f6fa2423d
.rar
chromepass/ChromePass.chm
.chm
chromepass/ChromePass.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 116KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 119KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
chromepass/readme.txt