913a0f376f09709c4ddcfbd1232ce028b256c7a9e599b6c801eddd5c6bd38d90

General

Target

913a0f376f09709c4ddcfbd1232ce028b256c7a9e599b6c801eddd5c6bd38d90
Size

1.5MB
MD5

2fade27ac42b474a1545bb9da13d4107
SHA1

7d4e08c43c2e83801fa4225334e0fb79b3688d77
SHA256

913a0f376f09709c4ddcfbd1232ce028b256c7a9e599b6c801eddd5c6bd38d90
SHA512

7e79d28d5a1d0223d5a034a817a249beeac4cc2b0765db958a64bc0859e9ec94652baf74ad0389c01b29242e9b80971de39d8c7bfc01e2cf518c21ea73b0f171
SSDEEP

24576:ytAodqwZlxq5t9C2vkui8mEw1S4E4WX4fxPOzq4/LQtNatarpQ40jtEvqkNfXh1z:yyyqwZXqR7fi8mTNWX45YjjQtNaItQtY

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Files

913a0f376f09709c4ddcfbd1232ce028b256c7a9e599b6c801eddd5c6bd38d90
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 624KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 520KB - Virtual size: 518KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 464KB - Virtual size: 461KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 884KB - Virtual size: 882KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 624KB

UPX1 Size: 1.5MB - Virtual size: 1.5MB

.rsrc Size: 8KB - Virtual size: 8KB

Headers

File Characteristics

Sections

.text Size: 520KB - Virtual size: 518KB

CODE Size: 464KB - Virtual size: 461KB

.rdata Size: 884KB - Virtual size: 882KB

.data Size: 60KB - Virtual size: 230KB

DATA Size: 8KB - Virtual size: 8KB

BSS Size: 4KB - Virtual size: 3KB

.rsrc Size: 24KB - Virtual size: 22KB

UPX0
Size: - Virtual size: 624KB

UPX1
Size: 1.5MB - Virtual size: 1.5MB

.rsrc
Size: 8KB - Virtual size: 8KB

.text
Size: 520KB - Virtual size: 518KB

CODE
Size: 464KB - Virtual size: 461KB

.rdata
Size: 884KB - Virtual size: 882KB

.data
Size: 60KB - Virtual size: 230KB

DATA
Size: 8KB - Virtual size: 8KB

BSS
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 24KB - Virtual size: 22KB