8a93ed0f80b337ece9ffc9380fe6b69b6a1c7c25052a8f8eefecdc5a13e9966c

General

Target

8a93ed0f80b337ece9ffc9380fe6b69b6a1c7c25052a8f8eefecdc5a13e9966c
Size

632KB
MD5

d3a9112f8479de6d0bb80daa086ee39d
SHA1

c7044e763bddd442c7ff7504efe954ea4dbe6848
SHA256

8a93ed0f80b337ece9ffc9380fe6b69b6a1c7c25052a8f8eefecdc5a13e9966c
SHA512

0a604cea4bc5e13c6ac8bbbc381b9a1827e47ddde2b6713574e89ffd627eb2ac16be4760264a09d4894450d32359e9f2d233cef59dd5e9add6f1cf802f44d2d2
SSDEEP

12288:QAEx4EoqHsQdmxl6zbr+F3KUf79EAN9IT6uOB2f/9E8k:LEx45zxI+bcTFY2dC

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

AutoIT Executable 1 IoCs

AutoIT scripts compiled to PE executables.

resource	yara_rule
static1/unpack001/out.upx	autoit_exe

Files

8a93ed0f80b337ece9ffc9380fe6b69b6a1c7c25052a8f8eefecdc5a13e9966c
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

UPX0
Size: - Virtual size: 596KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 594KB - Virtual size: 596KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 656KB - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 243KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 596KB

UPX1 Size: 594KB - Virtual size: 596KB

.rsrc Size: 37KB - Virtual size: 40KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 656KB - Virtual size: 656KB

.rdata Size: 180KB - Virtual size: 179KB

.data Size: 26KB - Virtual size: 46KB

.pdata Size: 28KB - Virtual size: 28KB

.rsrc Size: 243KB - Virtual size: 242KB

.reloc Size: 7KB - Virtual size: 6KB

UPX0
Size: - Virtual size: 596KB

UPX1
Size: 594KB - Virtual size: 596KB

.rsrc
Size: 37KB - Virtual size: 40KB

.text
Size: 656KB - Virtual size: 656KB

.rdata
Size: 180KB - Virtual size: 179KB

.data
Size: 26KB - Virtual size: 46KB

.pdata
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 243KB - Virtual size: 242KB

.reloc
Size: 7KB - Virtual size: 6KB