2dd0f0c9fe9d05fdb315ea80e68e4d626806639caf521ab654916657f85a571b

General

Target

2dd0f0c9fe9d05fdb315ea80e68e4d626806639caf521ab654916657f85a571b
Size

1.3MB
MD5

ada30884b89dc9fe49d48558b8f439c8
SHA1

3025f373cfc04e257d60c67ba5c8173c78289abd
SHA256

2dd0f0c9fe9d05fdb315ea80e68e4d626806639caf521ab654916657f85a571b
SHA512

91fe44e5790c834a6bc6c58826105415735a5d9fed5ccfeff1216cfc0fbce9460295f044421ed0e810eb42bce9be275974c807fc654880dcb8a23485794d77a3
SSDEEP

24576:7MEbNzoKWAX4Tre3zCx4ABYwjTtrRr/6LhmJklvHBk5ahLw3vTsdiQ:7MEeK1Ere3zNiYwv7SLQMPBEL/T8

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
2dd0f0c9fe9d05fdb315ea80e68e4d626806639caf521ab654916657f85a571b
unpack001/out.upx

Files

2dd0f0c9fe9d05fdb315ea80e68e4d626806639caf521ab654916657f85a571b
.exe windows x64

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

UPX0
Size: - Virtual size: 2.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x64

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 40KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 432B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 109B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.pdata
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 2.5MB

UPX1 Size: 1.1MB - Virtual size: 1.1MB

.rsrc Size: 160KB - Virtual size: 164KB

Headers

File Characteristics

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.data Size: 1.3MB - Virtual size: 1.3MB

.bss Size: - Virtual size: 40KB

.idata Size: 7KB - Virtual size: 6KB

.didata Size: 512B - Virtual size: 334B

.tls Size: - Virtual size: 432B

.rdata Size: 512B - Virtual size: 109B

.reloc Size: 85KB - Virtual size: 85KB

.pdata Size: 94KB - Virtual size: 93KB

.rsrc Size: 160KB - Virtual size: 159KB

UPX0
Size: - Virtual size: 2.5MB

UPX1
Size: 1.1MB - Virtual size: 1.1MB

.rsrc
Size: 160KB - Virtual size: 164KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.data
Size: 1.3MB - Virtual size: 1.3MB

.bss
Size: - Virtual size: 40KB

.idata
Size: 7KB - Virtual size: 6KB

.didata
Size: 512B - Virtual size: 334B

.tls
Size: - Virtual size: 432B

.rdata
Size: 512B - Virtual size: 109B

.reloc
Size: 85KB - Virtual size: 85KB

.pdata
Size: 94KB - Virtual size: 93KB

.rsrc
Size: 160KB - Virtual size: 159KB