a2cd682c1ec19d9cc80a34ddbf0d0a05 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2cd682c1ec19d9cc80a34ddbf0d0a05
Size

1.2MB
MD5

a2cd682c1ec19d9cc80a34ddbf0d0a05
SHA1

a3c573b1a4ffe288f1a187b011dcfc553456b38d
SHA256

e02dde3bb9d8dbff05111109acf49191f5d858a7f8870dc6681dcfd74dd6337e
SHA512

7612179042f3c82bd66351d6e4fc9b25c12290c801676f4825a665797ae63fe145444819b1cb0581040a88a2729544087b92672c992f54aa80731f405e146aff
SSDEEP

24576:5yhabXSMcm//zTMSs4cEerEOSp9PHH/BSWCMbE8T5ApbFCX7To43mK2Jwr2KPE:5ZBESIEvOSp9PHAQE8tKbFCrTo42KMKs

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/魔域商店编辑工具v1.66/魔域商店修改工具v1.66.exe	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/魔域商店编辑工具v1.66/魔域商店修改工具v1.66.exe

Files

a2cd682c1ec19d9cc80a34ddbf0d0a05
.rar .url polyglot
魔域商店编辑工具v1.66/67PP私服下载站.txt.url
.url
魔域商店编辑工具v1.66/67pp下载说明必看.txt
魔域商店编辑工具v1.66/Shop.dat
魔域商店编辑工具v1.66/itemtype.dat
魔域商店编辑工具v1.66/删除商店物品.jpg
.jpg
魔域商店编辑工具v1.66/注册机.reg
魔域商店编辑工具v1.66/添加VIP物品.jpg
.jpg
魔域商店编辑工具v1.66/添加商品.jpg
.jpg
魔域商店编辑工具v1.66/说明.txt
魔域商店编辑工具v1.66/魔域商店修改工具.jpg
.jpg
魔域商店编辑工具v1.66/魔域商店修改工具v1.66.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 722KB - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE