4f4e5413c1f98f7e7733e22611ffdaee9b81487c3c4de402e44dccba33537ddc

General

Target

4f4e5413c1f98f7e7733e22611ffdaee9b81487c3c4de402e44dccba33537ddc
Size

194KB
MD5

63465d42415343fb3e15558f3641d20f
SHA1

6f0be15a5b3cc9eaa69d02d25d1a43a249111587
SHA256

4f4e5413c1f98f7e7733e22611ffdaee9b81487c3c4de402e44dccba33537ddc
SHA512

97d13d302e49cefdf7c83e7e7016f2536903be736bc3e14dedfbe1c69058b1f12e70f83ca9bba4d3b14ad3de53bc88c5a564226640b09b02374585608b04479e
SSDEEP

3072:vd7BfkAjiKiz7W/BPEzyr7rfLDlERnbG7LEXyt7qBb/0HRR58kcl9MZJ4aZ1B9Jz:vBtXilWFr3fLP6ORHtZqWjJ

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Files

4f4e5413c1f98f7e7733e22611ffdaee9b81487c3c4de402e44dccba33537ddc
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 228KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 170KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 326KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 9B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 228KB

UPX1 Size: 170KB - Virtual size: 172KB

.rsrc Size: 23KB - Virtual size: 24KB

Headers

File Characteristics

Sections

CODE Size: 25KB - Virtual size: 24KB

DATA Size: 326KB - Virtual size: 326KB

BSS Size: - Virtual size: 9B

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 296B

.rsrc Size: 23KB - Virtual size: 23KB

UPX0
Size: - Virtual size: 228KB

UPX1
Size: 170KB - Virtual size: 172KB

.rsrc
Size: 23KB - Virtual size: 24KB

CODE
Size: 25KB - Virtual size: 24KB

DATA
Size: 326KB - Virtual size: 326KB

BSS
Size: - Virtual size: 9B

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 296B

.rsrc
Size: 23KB - Virtual size: 23KB