General

  • Target

    b9d3afe2e1978b9cc83d3e76a46fcedb7f8c6693edc517f918d310de943cbee8

  • Size

    312KB

  • MD5

    d1de47776076580de4d6dbd71acfbebd

  • SHA1

    31708125cd48b6774a79c6be4af524eaae040819

  • SHA256

    b9d3afe2e1978b9cc83d3e76a46fcedb7f8c6693edc517f918d310de943cbee8

  • SHA512

    d171f0be0037cca1dae457da0d4fe4a5d278377a30952ef43773728821250c31706d8d872f1415964b38946c3c98264e13ec1b939d572ff4a4538f45d85b2774

  • SSDEEP

    6144:AvJHbHWEQyhCmhVAc4RgCM1GxVAOCIr7nAFHxtKWJZ6PwLusisAzKTyr:uJHbH1QwlARgCCySf47AFHLJ4uusCzZr

Score
10/10

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • Urelas family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • b9d3afe2e1978b9cc83d3e76a46fcedb7f8c6693edc517f918d310de943cbee8
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections