aefc3361114ace20d1b7147cd9c1d865b560957779e9496e9506219fe7bb83b6

General

Target

aefc3361114ace20d1b7147cd9c1d865b560957779e9496e9506219fe7bb83b6
Size

2.2MB
MD5

b2723ef8f4671f64d0ffe21f8cbe7ff4
SHA1

0a8794c6d3ba581a989facd172fd7ea5fc63ab6b
SHA256

aefc3361114ace20d1b7147cd9c1d865b560957779e9496e9506219fe7bb83b6
SHA512

7ea75b493ef9542ebdec3027d84a455b35a361dedb8bb25b531577830d8b27964591071857358bcbbc61e77b0bf482e4d86e9ead23c105d04ecf27eff799199a
SSDEEP

49152:xINdv++XQL+mc0PaahW3HeZ0dwkoKiytRIl7BpMWcAihUd3TXA2k5ybfW:u8+hIaRHeJTWRIlHMgihC3c3

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
aefc3361114ace20d1b7147cd9c1d865b560957779e9496e9506219fe7bb83b6
unpack001/out.upx

Files

aefc3361114ace20d1b7147cd9c1d865b560957779e9496e9506219fe7bb83b6
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 884KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

6kj7u8ty
Size: 325KB - Virtual size: 325KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 884KB

UPX1 Size: 2.2MB - Virtual size: 2.2MB

.rsrc Size: 5KB - Virtual size: 8KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 176KB - Virtual size: 176KB

.data Size: 2.5MB - Virtual size: 2.5MB

.idata Size: 4KB - Virtual size: 3KB

6kj7u8ty Size: 325KB - Virtual size: 325KB

.reloc Size: 9KB - Virtual size: 9KB

.rsrc Size: 21KB - Virtual size: 21KB

UPX0
Size: - Virtual size: 884KB

UPX1
Size: 2.2MB - Virtual size: 2.2MB

.rsrc
Size: 5KB - Virtual size: 8KB

.text
Size: 176KB - Virtual size: 176KB

.data
Size: 2.5MB - Virtual size: 2.5MB

.idata
Size: 4KB - Virtual size: 3KB

6kj7u8ty
Size: 325KB - Virtual size: 325KB

.reloc
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 21KB - Virtual size: 21KB