a97cceb6a6e7070cd5dcfa1de95348028ec4fc7529ca7b9172f4a44357d9ca38

General

Target

a97cceb6a6e7070cd5dcfa1de95348028ec4fc7529ca7b9172f4a44357d9ca38
Size

1.5MB
MD5

3827ce47574c85fd1f2ac6139b0262a7
SHA1

868b7335f8286607def3bf120e7a95f206df5291
SHA256

a97cceb6a6e7070cd5dcfa1de95348028ec4fc7529ca7b9172f4a44357d9ca38
SHA512

7ad8abd5d83d15da496cffea82a5bb51eb43f1f23504fb5746f1e1149c6831b53c618a99034b1a81766b4bdee18c8d9e5ad8a614a6b9a2855c6a932a857145c8
SSDEEP

24576:fO1LHcsboAcntImlnm5bGFZ0XkAck+ffCUyCBZY3/MQ8of+0zOQNtsEGDz1hkHf:G2Acn9CkZ0X2hff/yC3G/nzzvNts/zE

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
a97cceb6a6e7070cd5dcfa1de95348028ec4fc7529ca7b9172f4a44357d9ca38
unpack001/out.upx

Files

a97cceb6a6e7070cd5dcfa1de95348028ec4fc7529ca7b9172f4a44357d9ca38
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 424KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 812KB - Virtual size: 816KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 424KB

UPX1 Size: 812KB - Virtual size: 816KB

.rsrc Size: 1KB - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 109KB - Virtual size: 109KB

.rdata Size: 33KB - Virtual size: 32KB

.data Size: 4KB - Virtual size: 6KB

.gfids Size: 512B - Virtual size: 288B

.rsrc Size: 1.0MB - Virtual size: 1.0MB

.reloc Size: 6KB - Virtual size: 5KB

UPX0
Size: - Virtual size: 424KB

UPX1
Size: 812KB - Virtual size: 816KB

.rsrc
Size: 1KB - Virtual size: 4KB

.text
Size: 109KB - Virtual size: 109KB

.rdata
Size: 33KB - Virtual size: 32KB

.data
Size: 4KB - Virtual size: 6KB

.gfids
Size: 512B - Virtual size: 288B

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

.reloc
Size: 6KB - Virtual size: 5KB