08b6a905d5f5bdceedd779a6ee0a0e4e16421a388147673d1ad6f6abac7a1686

General

Target

08b6a905d5f5bdceedd779a6ee0a0e4e16421a388147673d1ad6f6abac7a1686
Size

618KB
MD5

05c6c18d9dfd8c3f6d02744b8cb2c632
SHA1

cca80e5cd2822bed0200149f8fa7e08f140013c9
SHA256

08b6a905d5f5bdceedd779a6ee0a0e4e16421a388147673d1ad6f6abac7a1686
SHA512

91c54c251346298557b4af9adeab0e7b325bfc59912193703acd07ae3ff3e054accecce99cfa183d40b8d0db318e752a8653389fd18006a3dd0a1236b1ed83bc
SSDEEP

12288:43XA01K/W7qRI0hgXb5w95f0q7nc6rMf/UxXGup0RABBJ9Di:Uw0uW7qRI0aGdc6rdWup0Rss

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
08b6a905d5f5bdceedd779a6ee0a0e4e16421a388147673d1ad6f6abac7a1686
unpack001/out.upx

Files

08b6a905d5f5bdceedd779a6ee0a0e4e16421a388147673d1ad6f6abac7a1686
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 792KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 608KB - Virtual size: 608KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1019KB - Virtual size: 1019KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 7KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 84B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 792KB

UPX1 Size: 608KB - Virtual size: 608KB

.rsrc Size: 9KB - Virtual size: 12KB

Headers

File Characteristics

Sections

CODE Size: 1019KB - Virtual size: 1019KB

DATA Size: 23KB - Virtual size: 23KB

BSS Size: - Virtual size: 7KB

.idata Size: 12KB - Virtual size: 12KB

.tls Size: - Virtual size: 84B

.rdata Size: 512B - Virtual size: 512B

.reloc Size: 75KB - Virtual size: 75KB

.rsrc Size: 234KB - Virtual size: 234KB

UPX0
Size: - Virtual size: 792KB

UPX1
Size: 608KB - Virtual size: 608KB

.rsrc
Size: 9KB - Virtual size: 12KB

CODE
Size: 1019KB - Virtual size: 1019KB

DATA
Size: 23KB - Virtual size: 23KB

BSS
Size: - Virtual size: 7KB

.idata
Size: 12KB - Virtual size: 12KB

.tls
Size: - Virtual size: 84B

.rdata
Size: 512B - Virtual size: 512B

.reloc
Size: 75KB - Virtual size: 75KB

.rsrc
Size: 234KB - Virtual size: 234KB