65663f98cca20b2a43eb90d19669b06241988280f75713c13893b37e50cb7767

General

Target

65663f98cca20b2a43eb90d19669b06241988280f75713c13893b37e50cb7767
Size

283KB
MD5

b631b67687fc4c470f58a9c63523ef06
SHA1

8c28cef50b172eece033a8f2137cd49641e7dcab
SHA256

65663f98cca20b2a43eb90d19669b06241988280f75713c13893b37e50cb7767
SHA512

a65da727b00759e5a4c09ccd85dff5a06fdfd773353e2c07e41001dc3144912d6549f7b43a5bae277e5bcab152f9d93de0365e284ba15089b70251fa8693e9aa
SSDEEP

6144:9iGzN3lLt8Yze1SOUuDavPX4PpbVl9QQYLFHNInfL5H3nFD41r:0uLGZ1jDlpbL0FOnfVFD4R

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Files

65663f98cca20b2a43eb90d19669b06241988280f75713c13893b37e50cb7767
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 220KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 272KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 61KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 22KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 99KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 78B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 220KB

UPX1 Size: 272KB - Virtual size: 276KB

.rsrc Size: 10KB - Virtual size: 12KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 10KB - Virtual size: 9KB

.data Size: 37KB - Virtual size: 58KB

.edata Size: 61KB - Virtual size: 93KB

DATA Size: 22KB - Virtual size: 40KB

.bss Size: 99KB - Virtual size: 116KB

.data Size: 102KB - Virtual size: 134KB

.rsrc Size: 10KB - Virtual size: 9KB

.reloc Size: 1024B - Virtual size: 78B

UPX0
Size: - Virtual size: 220KB

UPX1
Size: 272KB - Virtual size: 276KB

.rsrc
Size: 10KB - Virtual size: 12KB

.text
Size: 10KB - Virtual size: 9KB

.data
Size: 37KB - Virtual size: 58KB

.edata
Size: 61KB - Virtual size: 93KB

DATA
Size: 22KB - Virtual size: 40KB

.bss
Size: 99KB - Virtual size: 116KB

.data
Size: 102KB - Virtual size: 134KB

.rsrc
Size: 10KB - Virtual size: 9KB

.reloc
Size: 1024B - Virtual size: 78B