228c33020f6c229c0881c80c3e6212e9f01377be8e1e4257cbd28fcb60d7adaa

Sharing

Copy URL Twitter E-mail

General

Target

228c33020f6c229c0881c80c3e6212e9f01377be8e1e4257cbd28fcb60d7adaa
Size

1.4MB
MD5

849519f08de248fa5b5c71f9acbda523
SHA1

689c93d2a262668b6f81d4b400fd9642f548f9c6
SHA256

228c33020f6c229c0881c80c3e6212e9f01377be8e1e4257cbd28fcb60d7adaa
SHA512

ae0217a3f2a03c1abecb1506fd0d90a6d442ae07049ea97503ae2df2a5dda1c515dc63368ea6eb70cff0f51be0710b0b5a0ca25341796fd120cd758ae9eaa095
SSDEEP

24576:eaXNQr3iXqIsOv4UhhE0Ezk910+Ec0xMke8JsU3AoXd0Mz0sj6F:ZaIsOfhhR91Qd0Mz0sj6F

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
228c33020f6c229c0881c80c3e6212e9f01377be8e1e4257cbd28fcb60d7adaa
unpack001/out.upx

Files

228c33020f6c229c0881c80c3e6212e9f01377be8e1e4257cbd28fcb60d7adaa
.exe windows:4 windows x64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

UPX0
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 550KB - Virtual size: 552KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 451KB - Virtual size: 450KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/31
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/70
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/81
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/92
Size: 932KB - Virtual size: 932KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/105
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.5MB

UPX1 Size: 550KB - Virtual size: 552KB

UPX2 Size: 512B - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 451KB - Virtual size: 450KB

.data Size: 84KB - Virtual size: 84KB

.rdata Size: 49KB - Virtual size: 48KB

.pdata Size: 29KB - Virtual size: 29KB

.xdata Size: 40KB - Virtual size: 39KB

.bss Size: - Virtual size: 5KB

.idata Size: 5KB - Virtual size: 5KB

.CRT Size: 512B - Virtual size: 112B

.tls Size: 512B - Virtual size: 104B

/4 Size: 2KB - Virtual size: 2KB

/19 Size: 184KB - Virtual size: 184KB

/31 Size: 21KB - Virtual size: 20KB

/45 Size: 31KB - Virtual size: 30KB

/57 Size: 11KB - Virtual size: 10KB

/70 Size: 2KB - Virtual size: 2KB

/81 Size: 132KB - Virtual size: 132KB

/92 Size: 932KB - Virtual size: 932KB

/105 Size: 6KB - Virtual size: 5KB

UPX0
Size: - Virtual size: 1.5MB

UPX1
Size: 550KB - Virtual size: 552KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 451KB - Virtual size: 450KB

.data
Size: 84KB - Virtual size: 84KB

.rdata
Size: 49KB - Virtual size: 48KB

.pdata
Size: 29KB - Virtual size: 29KB

.xdata
Size: 40KB - Virtual size: 39KB

.bss
Size: - Virtual size: 5KB

.idata
Size: 5KB - Virtual size: 5KB

.CRT
Size: 512B - Virtual size: 112B

.tls
Size: 512B - Virtual size: 104B

/4
Size: 2KB - Virtual size: 2KB

/19
Size: 184KB - Virtual size: 184KB

/31
Size: 21KB - Virtual size: 20KB

/45
Size: 31KB - Virtual size: 30KB

/57
Size: 11KB - Virtual size: 10KB

/70
Size: 2KB - Virtual size: 2KB

/81
Size: 132KB - Virtual size: 132KB

/92
Size: 932KB - Virtual size: 932KB

/105
Size: 6KB - Virtual size: 5KB