General
-
Target
UPPERCUT_1.0.0.0.zip
-
Size
4.1MB
-
MD5
5ef37b19deb6d0f7d98458c9b7c17aee
-
SHA1
46c9a349d62287d81c94ce7148233c0922604273
-
SHA256
6fdbda289d4d8b45ec551afa446791fa3c13047ec0c36c6c0d0f25e9cf52f219
-
SHA512
ef141215b076fcb545d9dd795b7828162672f73d6a0f8cb0174c554eb656f6915adbd946a22bd92876aa07017d0fc3444bdc8b50cf95022fff7686624e5fd49a
-
SSDEEP
98304:Jzrb5HTUe89EbStxM3PUnkRFOasB0WzADRAwTAk6l2y3C6xxolz4RJ:JD5H4e/StxYUknOX/Gck653C6xy14RJ
Malware Config
Signatures
-
resource yara_rule static1/unpack001/UPPERCUT_1.0.0.0/UPPERCUT_1.0.0.0.exe upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/UPPERCUT_1.0.0.0/UPPERCUT_1.0.0.0.exe
Files
-
UPPERCUT_1.0.0.0.zip.zip
-
UPPERCUT_1.0.0.0/UPPERCUT_1.0.0.0.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 1.1MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4.1MB - Virtual size: 4.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
UPPERCUT_1.0.0.0/readme.txt
-
__MACOSX/UPPERCUT_1.0.0.0/._readme.txt