b1c198e9215eddd41390003aba9c0b6a[.]bin

General

Target

b1c198e9215eddd41390003aba9c0b6a.bin
Size

120KB
MD5

37bf5375802af11e56340a33a2092706
SHA1

2c64d1eaa7aba8c7c32baf83983a36c3f5edd3d3
SHA256

fcaf2ba541b078f189183bc5f4d953b4648317fb6212d7a1983b7e00437282ba
SHA512

904328035669b012027883a4d7c8283bfe9e9999cc5dffdc958eb4d8c0c4d48c604096e6b9d264ee954a433ca5f18c9d6fe8b870c2982ceb0e49e4c9099c032a
SSDEEP

3072:wMTiEhoi2Mbppn2m8c8Mh34J+KqgQ4XhVbbIuG4hDqu:wM2HdMlpn2m8RE4J+WQ4XrbEupJL

Score

8^/10

upx

Patched UPX-packed file 1 IoCs

Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

resource	yara_rule
static1/unpack001/3a63d3b7432d806cf40fe764265219243b397b0748d02f6093f988c161a51d31.elf	patched_upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/3a63d3b7432d806cf40fe764265219243b397b0748d02f6093f988c161a51d31.elf	upx

b1c198e9215eddd41390003aba9c0b6a.bin
.zip

Password: infected
3a63d3b7432d806cf40fe764265219243b397b0748d02f6093f988c161a51d31.elf
.elf linux mipsbe