abed1f4742e27e377df86961509b5619[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

abed1f4742e27e377df86961509b5619.zip
Size

1.4MB
MD5

f0d8602d725761f28b27b8d7dfd141d1
SHA1

6bfa889ee452c39e1d9b2ba62f268af9a2e78c70
SHA256

17b2225810c366dc741cbb339d13216dc9624db1895321695f6665df91e0b9d2
SHA512

9eb2f4852b76e8e65079e3eb0a6fee56ab40d76faab082778b6f403806310f82cb8b73ea170265743e5820c19c620589656549a4b69e3e72aaf12a4db476943a
SSDEEP

24576:AJnYycpmRAoBo5OhIG0C930Vl/3K/KwPQDcLvF25of8hfIBTm9+oD+UH3uAyHQJO:+5vRAoecGgk3/ai5O9OIBTm9l1e7wJHu

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/b2108dfb3889c739424c76cfab89967b106303bbb48527797663968a5fad0c9c	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b2108dfb3889c739424c76cfab89967b106303bbb48527797663968a5fad0c9c

Files

abed1f4742e27e377df86961509b5619.zip
.zip

Password: infected
b2108dfb3889c739424c76cfab89967b106303bbb48527797663968a5fad0c9c
.exe windows:5 windows x86 arch:x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 56KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uKbvIUPc
Size: 27KB - Virtual size: 27KB

qFMJuZKu
Size: 2KB - Virtual size: 1KB

nLxuBRze
Size: 46KB - Virtual size: 46KB

hRKsYJRa
Size: 410KB - Virtual size: 410KB

KbubyTcr
Size: 64KB - Virtual size: 63KB

IgxNrwXv
Size: 155KB - Virtual size: 155KB

NzjKjqKS
Size: 13KB - Virtual size: 13KB

CXXEnKwN
Size: 18KB - Virtual size: 17KB

XLOCJRZo
Size: 17KB - Virtual size: 17KB

vgcfmBBP
Size: 305KB - Virtual size: 304KB

VaKwVWOU
Size: 15KB - Virtual size: 14KB

OpEtCGrI
Size: 4KB - Virtual size: 3KB

xRSBiwBE
Size: 46KB - Virtual size: 45KB

uGHgwKFu
Size: 41KB - Virtual size: 40KB

ceVgJNCS
Size: 48KB - Virtual size: 48KB

CUZdtPaz
Size: 9KB - Virtual size: 8KB

tzIEUsxA
Size: 1024B - Virtual size: 675B

tVJjPVsj
Size: 134KB - Virtual size: 133KB

qkYfwZLr
Size: 18KB - Virtual size: 18KB

wktrucZZ
Size: 94KB - Virtual size: 93KB

ChgQpntQ
Size: 21KB - Virtual size: 21KB

ZXvTSBor
Size: 119KB - Virtual size: 118KB

tgZpGWED
Size: 34KB - Virtual size: 34KB

kEjPvWXl
Size: 19KB - Virtual size: 19KB

OBhCxcsP
Size: 20KB - Virtual size: 20KB

MgWhFWKg
Size: 13KB - Virtual size: 13KB

OQndqApc
Size: 67KB - Virtual size: 67KB

lmDnxlSp
Size: 21KB - Virtual size: 20KB

cqcAVdaB
Size: 2KB - Virtual size: 2KB

WNhopYNz
Size: 15KB - Virtual size: 15KB

NfmRakaP
Size: 38KB - Virtual size: 37KB

zynOCuDI
Size: 114KB - Virtual size: 114KB

CnTXFGrA
Size: 37KB - Virtual size: 36KB

WdQarOXx
Size: 4KB - Virtual size: 3KB

lXuywZZv
Size: 23KB - Virtual size: 22KB

hzwHwjmv
Size: 52KB - Virtual size: 51KB

ZNLCRGsq
Size: 34KB - Virtual size: 34KB

mWtsmouW
Size: 92KB - Virtual size: 92KB

DSvKtWYb
Size: 91KB - Virtual size: 90KB

KVeuIonV
Size: 94KB - Virtual size: 94KB

bIUDEubb
Size: 56KB - Virtual size: 55KB

iTCuoMdd
Size: 9KB - Virtual size: 9KB

YUYEXqje
Size: 9KB - Virtual size: 9KB

GUEQrhGz
Size: 25KB - Virtual size: 24KB

jDsnfcOa
Size: 52KB - Virtual size: 52KB

SOXEjYfM
Size: 33KB - Virtual size: 32KB

SJphcUtX
Size: 11KB - Virtual size: 10KB

cyFHKMsH
Size: 30KB - Virtual size: 30KB

uOSUTvPV
Size: 408KB - Virtual size: 407KB

BmiKuoOL
Size: 2KB - Virtual size: 1KB

xpZMLQRo
Size: 44KB - Virtual size: 44KB

hlNlQkNX
Size: 84KB - Virtual size: 83KB

NMjLxnQI
Size: 68KB - Virtual size: 67KB

hnHwHAZu
Size: 19KB - Virtual size: 18KB

fjSmuwek
Size: 5KB - Virtual size: 5KB

fDxXuPqh
Size: 26KB - Virtual size: 26KB

kzSyoQYi
Size: 6KB - Virtual size: 5KB

KqFwQwkG
Size: 432KB - Virtual size: 432KB

PidfjBeG
Size: 10KB - Virtual size: 10KB

RypnrFsW
Size: 1KB - Virtual size: 1KB

rjROooWW
Size: 75KB - Virtual size: 74KB

EpBFKbJR
Size: 3KB - Virtual size: 2KB

OzsCHvMm
Size: 63KB - Virtual size: 63KB

knlOXdsr
Size: 40KB - Virtual size: 40KB

WmYgdySS
Size: 198KB - Virtual size: 197KB

bcbooDat
Size: 61KB - Virtual size: 60KB

aWuJRVsA
Size: 9KB - Virtual size: 9KB

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 56KB

UPX1 Size: 24KB - Virtual size: 28KB

UPX2 Size: 512B - Virtual size: 4KB

uKbvIUPc Size: 27KB - Virtual size: 27KB

qFMJuZKu Size: 2KB - Virtual size: 1KB

nLxuBRze Size: 46KB - Virtual size: 46KB

hRKsYJRa Size: 410KB - Virtual size: 410KB

KbubyTcr Size: 64KB - Virtual size: 63KB

IgxNrwXv Size: 155KB - Virtual size: 155KB

NzjKjqKS Size: 13KB - Virtual size: 13KB

CXXEnKwN Size: 18KB - Virtual size: 17KB

XLOCJRZo Size: 17KB - Virtual size: 17KB

vgcfmBBP Size: 305KB - Virtual size: 304KB

VaKwVWOU Size: 15KB - Virtual size: 14KB

OpEtCGrI Size: 4KB - Virtual size: 3KB

xRSBiwBE Size: 46KB - Virtual size: 45KB

uGHgwKFu Size: 41KB - Virtual size: 40KB

ceVgJNCS Size: 48KB - Virtual size: 48KB

CUZdtPaz Size: 9KB - Virtual size: 8KB

tzIEUsxA Size: 1024B - Virtual size: 675B

tVJjPVsj Size: 134KB - Virtual size: 133KB

qkYfwZLr Size: 18KB - Virtual size: 18KB

wktrucZZ Size: 94KB - Virtual size: 93KB

ChgQpntQ Size: 21KB - Virtual size: 21KB

ZXvTSBor Size: 119KB - Virtual size: 118KB

tgZpGWED Size: 34KB - Virtual size: 34KB

kEjPvWXl Size: 19KB - Virtual size: 19KB

OBhCxcsP Size: 20KB - Virtual size: 20KB

MgWhFWKg Size: 13KB - Virtual size: 13KB

OQndqApc Size: 67KB - Virtual size: 67KB

lmDnxlSp Size: 21KB - Virtual size: 20KB

cqcAVdaB Size: 2KB - Virtual size: 2KB

WNhopYNz Size: 15KB - Virtual size: 15KB

NfmRakaP Size: 38KB - Virtual size: 37KB

zynOCuDI Size: 114KB - Virtual size: 114KB

CnTXFGrA Size: 37KB - Virtual size: 36KB

WdQarOXx Size: 4KB - Virtual size: 3KB

lXuywZZv Size: 23KB - Virtual size: 22KB

hzwHwjmv Size: 52KB - Virtual size: 51KB

ZNLCRGsq Size: 34KB - Virtual size: 34KB

mWtsmouW Size: 92KB - Virtual size: 92KB

DSvKtWYb Size: 91KB - Virtual size: 90KB

KVeuIonV Size: 94KB - Virtual size: 94KB

bIUDEubb Size: 56KB - Virtual size: 55KB

iTCuoMdd Size: 9KB - Virtual size: 9KB

YUYEXqje Size: 9KB - Virtual size: 9KB

GUEQrhGz Size: 25KB - Virtual size: 24KB

jDsnfcOa Size: 52KB - Virtual size: 52KB

SOXEjYfM Size: 33KB - Virtual size: 32KB

SJphcUtX Size: 11KB - Virtual size: 10KB

cyFHKMsH Size: 30KB - Virtual size: 30KB

uOSUTvPV Size: 408KB - Virtual size: 407KB

BmiKuoOL Size: 2KB - Virtual size: 1KB

xpZMLQRo Size: 44KB - Virtual size: 44KB

hlNlQkNX Size: 84KB - Virtual size: 83KB

NMjLxnQI Size: 68KB - Virtual size: 67KB

hnHwHAZu Size: 19KB - Virtual size: 18KB

fjSmuwek Size: 5KB - Virtual size: 5KB

fDxXuPqh Size: 26KB - Virtual size: 26KB

kzSyoQYi Size: 6KB - Virtual size: 5KB

KqFwQwkG Size: 432KB - Virtual size: 432KB

PidfjBeG Size: 10KB - Virtual size: 10KB

RypnrFsW Size: 1KB - Virtual size: 1KB

rjROooWW Size: 75KB - Virtual size: 74KB

EpBFKbJR Size: 3KB - Virtual size: 2KB

OzsCHvMm Size: 63KB - Virtual size: 63KB

knlOXdsr Size: 40KB - Virtual size: 40KB

WmYgdySS Size: 198KB - Virtual size: 197KB

bcbooDat Size: 61KB - Virtual size: 60KB

UPX0
Size: - Virtual size: 56KB

UPX1
Size: 24KB - Virtual size: 28KB

UPX2
Size: 512B - Virtual size: 4KB

uKbvIUPc
Size: 27KB - Virtual size: 27KB

qFMJuZKu
Size: 2KB - Virtual size: 1KB

nLxuBRze
Size: 46KB - Virtual size: 46KB

hRKsYJRa
Size: 410KB - Virtual size: 410KB

KbubyTcr
Size: 64KB - Virtual size: 63KB

IgxNrwXv
Size: 155KB - Virtual size: 155KB

NzjKjqKS
Size: 13KB - Virtual size: 13KB

CXXEnKwN
Size: 18KB - Virtual size: 17KB

XLOCJRZo
Size: 17KB - Virtual size: 17KB

vgcfmBBP
Size: 305KB - Virtual size: 304KB

VaKwVWOU
Size: 15KB - Virtual size: 14KB

OpEtCGrI
Size: 4KB - Virtual size: 3KB

xRSBiwBE
Size: 46KB - Virtual size: 45KB

uGHgwKFu
Size: 41KB - Virtual size: 40KB

ceVgJNCS
Size: 48KB - Virtual size: 48KB

CUZdtPaz
Size: 9KB - Virtual size: 8KB

tzIEUsxA
Size: 1024B - Virtual size: 675B

tVJjPVsj
Size: 134KB - Virtual size: 133KB

qkYfwZLr
Size: 18KB - Virtual size: 18KB

wktrucZZ
Size: 94KB - Virtual size: 93KB

ChgQpntQ
Size: 21KB - Virtual size: 21KB

ZXvTSBor
Size: 119KB - Virtual size: 118KB

tgZpGWED
Size: 34KB - Virtual size: 34KB

kEjPvWXl
Size: 19KB - Virtual size: 19KB

OBhCxcsP
Size: 20KB - Virtual size: 20KB

MgWhFWKg
Size: 13KB - Virtual size: 13KB

OQndqApc
Size: 67KB - Virtual size: 67KB

lmDnxlSp
Size: 21KB - Virtual size: 20KB

cqcAVdaB
Size: 2KB - Virtual size: 2KB

WNhopYNz
Size: 15KB - Virtual size: 15KB

NfmRakaP
Size: 38KB - Virtual size: 37KB

zynOCuDI
Size: 114KB - Virtual size: 114KB

CnTXFGrA
Size: 37KB - Virtual size: 36KB

WdQarOXx
Size: 4KB - Virtual size: 3KB

lXuywZZv
Size: 23KB - Virtual size: 22KB

hzwHwjmv
Size: 52KB - Virtual size: 51KB

ZNLCRGsq
Size: 34KB - Virtual size: 34KB

mWtsmouW
Size: 92KB - Virtual size: 92KB

DSvKtWYb
Size: 91KB - Virtual size: 90KB

KVeuIonV
Size: 94KB - Virtual size: 94KB

bIUDEubb
Size: 56KB - Virtual size: 55KB

iTCuoMdd
Size: 9KB - Virtual size: 9KB

YUYEXqje
Size: 9KB - Virtual size: 9KB

GUEQrhGz
Size: 25KB - Virtual size: 24KB

jDsnfcOa
Size: 52KB - Virtual size: 52KB

SOXEjYfM
Size: 33KB - Virtual size: 32KB

SJphcUtX
Size: 11KB - Virtual size: 10KB

cyFHKMsH
Size: 30KB - Virtual size: 30KB

uOSUTvPV
Size: 408KB - Virtual size: 407KB

BmiKuoOL
Size: 2KB - Virtual size: 1KB

xpZMLQRo
Size: 44KB - Virtual size: 44KB

hlNlQkNX
Size: 84KB - Virtual size: 83KB

NMjLxnQI
Size: 68KB - Virtual size: 67KB

hnHwHAZu
Size: 19KB - Virtual size: 18KB

fjSmuwek
Size: 5KB - Virtual size: 5KB

fDxXuPqh
Size: 26KB - Virtual size: 26KB

kzSyoQYi
Size: 6KB - Virtual size: 5KB

KqFwQwkG
Size: 432KB - Virtual size: 432KB

PidfjBeG
Size: 10KB - Virtual size: 10KB

RypnrFsW
Size: 1KB - Virtual size: 1KB

rjROooWW
Size: 75KB - Virtual size: 74KB

EpBFKbJR
Size: 3KB - Virtual size: 2KB

OzsCHvMm
Size: 63KB - Virtual size: 63KB

knlOXdsr
Size: 40KB - Virtual size: 40KB

WmYgdySS
Size: 198KB - Virtual size: 197KB

bcbooDat
Size: 61KB - Virtual size: 60KB

aWuJRVsA
Size: 9KB - Virtual size: 9KB