2cba9c21f46a9a7aa8deb237e8121d0c20537cf15227b67696624e3a40eb589c

General

Target

2cba9c21f46a9a7aa8deb237e8121d0c20537cf15227b67696624e3a40eb589c
Size

567KB
MD5

8746b40d1702b2aa84863c0f383ddbed
SHA1

859ecb77b4441f5bc074cd49bc7122280e2f39b9
SHA256

2cba9c21f46a9a7aa8deb237e8121d0c20537cf15227b67696624e3a40eb589c
SHA512

fee8ec39bfcbb3f0d0cd36980b5001f7c01d0ce5ece1ea04c2916456710cc159c44abfe4d2fd52de6101acaa9cd21ed112824a7c968c678c5f3fadd9f0f1850b
SSDEEP

12288:lIKFa09Epy3pT2Ppl/FIbFcuwbFIwEtFChIdMxnD1sR:iK/9E+CPpl/q3qErCud6DM

Score

9^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/NF-(e)40001875500.cpl	acprotect

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/NF-(e)40001875500.cpl	upx

Files

2cba9c21f46a9a7aa8deb237e8121d0c20537cf15227b67696624e3a40eb589c
.zip
NF-(e)40001875500.cpl
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 504KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 577KB - Virtual size: 580KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 594KB - Virtual size: 594KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 20KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 334KB - Virtual size: 334KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 504KB

UPX1 Size: 577KB - Virtual size: 580KB

.rsrc Size: 2KB - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 594KB - Virtual size: 594KB

.itext Size: 1KB - Virtual size: 1KB

.data Size: 43KB - Virtual size: 43KB

.bss Size: - Virtual size: 20KB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 40KB - Virtual size: 40KB

.rsrc Size: 334KB - Virtual size: 334KB

UPX0
Size: - Virtual size: 504KB

UPX1
Size: 577KB - Virtual size: 580KB

.rsrc
Size: 2KB - Virtual size: 4KB

.text
Size: 594KB - Virtual size: 594KB

.itext
Size: 1KB - Virtual size: 1KB

.data
Size: 43KB - Virtual size: 43KB

.bss
Size: - Virtual size: 20KB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 40KB - Virtual size: 40KB

.rsrc
Size: 334KB - Virtual size: 334KB