ff0657d0f85331a4204541fee7217dea2ccd38e6d8c966245dcb14e4ad6e9635

Sharing

Copy URL Twitter E-mail

General

Target

ff0657d0f85331a4204541fee7217dea2ccd38e6d8c966245dcb14e4ad6e9635
Size

54KB
MD5

6f1f224ddbbd00faa05b01ddfcc4fdaa
SHA1

059223a2fea138bedb54603d300a7876f7618ad0
SHA256

ff0657d0f85331a4204541fee7217dea2ccd38e6d8c966245dcb14e4ad6e9635
SHA512

e23d57195ac525a6f6b6d66e8d8c60e9ad4ae03fcc0a48d13d413eea6d4e6179b5d2498560f9cb85ec7a78e1c02b658ea46594b6ded725af65c783ae5bccf163
SSDEEP

1536:MfW0r2j7qQIt/8tZSw3qlyCiB5cYwn2m:Z0r2It0tkwnJBvW

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Files

ff0657d0f85331a4204541fee7217dea2ccd38e6d8c966245dcb14e4ad6e9635
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 372KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 51KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.tInt2
Size: 4KB - Virtual size: 304B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt16
Size: 4KB - Virtual size: 320B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt7
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tFind
Size: 4KB - Virtual size: 80B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt65
Size: 4KB - Virtual size: 160B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tIntp4
Size: 4KB - Virtual size: 320B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tInti4
Size: 4KB - Virtual size: 320B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt18
Size: 4KB - Virtual size: 160B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tIntu4
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt13
Size: 4KB - Virtual size: 160B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tIntt4
Size: 4KB - Virtual size: 336B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt99
Size: 4KB - Virtual size: 64B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt76
Size: 4KB - Virtual size: 608B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt87
Size: 4KB - Virtual size: 272B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt39
Size: 4KB - Virtual size: 240B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tInt21
Size: 4KB - Virtual size: 288B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togf73
Size: 4KB - Virtual size: 144B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.togt67
Size: 4KB - Virtual size: 96B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tInt4
Size: 4KB - Virtual size: 192B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tInt14
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 324KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 372KB

UPX1 Size: 51KB - Virtual size: 52KB

.rsrc Size: 2KB - Virtual size: 4KB

Headers

File Characteristics

Sections

.tInt2 Size: 4KB - Virtual size: 304B

.togt16 Size: 4KB - Virtual size: 320B

.text Size: 4KB - Virtual size: 1KB

.togt7 Size: 4KB - Virtual size: 176B

.tFind Size: 4KB - Virtual size: 80B

.togt65 Size: 4KB - Virtual size: 160B

.tIntp4 Size: 4KB - Virtual size: 320B

.tInti4 Size: 4KB - Virtual size: 320B

.togt18 Size: 4KB - Virtual size: 160B

.tIntu4 Size: 4KB - Virtual size: 176B

.togt13 Size: 4KB - Virtual size: 160B

.tIntt4 Size: 4KB - Virtual size: 336B

.togt99 Size: 4KB - Virtual size: 64B

.togt76 Size: 4KB - Virtual size: 608B

.togt87 Size: 4KB - Virtual size: 272B

.togt39 Size: 4KB - Virtual size: 240B

.tInt21 Size: 4KB - Virtual size: 288B

.togf73 Size: 4KB - Virtual size: 144B

.togt67 Size: 4KB - Virtual size: 96B

.tInt4 Size: 4KB - Virtual size: 192B

.tInt14 Size: 4KB - Virtual size: 16B

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 324KB - Virtual size: 321KB

UPX0
Size: - Virtual size: 372KB

UPX1
Size: 51KB - Virtual size: 52KB

.rsrc
Size: 2KB - Virtual size: 4KB

.tInt2
Size: 4KB - Virtual size: 304B

.togt16
Size: 4KB - Virtual size: 320B

.text
Size: 4KB - Virtual size: 1KB

.togt7
Size: 4KB - Virtual size: 176B

.tFind
Size: 4KB - Virtual size: 80B

.togt65
Size: 4KB - Virtual size: 160B

.tIntp4
Size: 4KB - Virtual size: 320B

.tInti4
Size: 4KB - Virtual size: 320B

.togt18
Size: 4KB - Virtual size: 160B

.tIntu4
Size: 4KB - Virtual size: 176B

.togt13
Size: 4KB - Virtual size: 160B

.tIntt4
Size: 4KB - Virtual size: 336B

.togt99
Size: 4KB - Virtual size: 64B

.togt76
Size: 4KB - Virtual size: 608B

.togt87
Size: 4KB - Virtual size: 272B

.togt39
Size: 4KB - Virtual size: 240B

.tInt21
Size: 4KB - Virtual size: 288B

.togf73
Size: 4KB - Virtual size: 144B

.togt67
Size: 4KB - Virtual size: 96B

.tInt4
Size: 4KB - Virtual size: 192B

.tInt14
Size: 4KB - Virtual size: 16B

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 324KB - Virtual size: 321KB