AMX_Installer[1][.]exe[.]zip

General

Target

AMX_Installer[1].exe.zip
Size

5.8MB
MD5

01a77bbb36c9c6e5232b8fe14b22d23e
SHA1

35cbb01be7f5c905f4b6e35891046972f83e3bc8
SHA256

14d09e50abef9efdfa3ffcd42d69a085ec4c7cab4c2d4e0e0dc7d8b1adc20a9b
SHA512

afd900be5c1ced507e7e219bfefa275a08a7f29acfa8be405529e47325a1a194075a92719b51c6550034138cc08bd5c07092f699aacdf328ce787162b2161ad1
SSDEEP

98304:smtwdauthms7K3gKStRHEdQ3kpiIh343mGv5DeyzZjrHRVJgbduvwOb2/30oka:smtwdrms7CgJ8hOFI6ZnHudTB/koka

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/AMX_Installer[1].exe	upx

Files

AMX_Installer[1].exe.zip
.zip

Password: infected
AMX_Installer[1].exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 312KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 165KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 55KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 312KB

UPX1 Size: 165KB - Virtual size: 168KB

.rsrc Size: 55KB - Virtual size: 56KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 288KB - Virtual size: 287KB

.rdata Size: 79KB - Virtual size: 79KB

.data Size: 10KB - Virtual size: 17KB

.rsrc Size: 59KB - Virtual size: 58KB

.reloc Size: 21KB - Virtual size: 21KB

UPX0
Size: - Virtual size: 312KB

UPX1
Size: 165KB - Virtual size: 168KB

.rsrc
Size: 55KB - Virtual size: 56KB

.text
Size: 288KB - Virtual size: 287KB

.rdata
Size: 79KB - Virtual size: 79KB

.data
Size: 10KB - Virtual size: 17KB

.rsrc
Size: 59KB - Virtual size: 58KB

.reloc
Size: 21KB - Virtual size: 21KB