c7ed05c83baf990e1eb4ea1a9c4529cf244338cb79c3d52338b388e04794cede

General

Target

c7ed05c83baf990e1eb4ea1a9c4529cf244338cb79c3d52338b388e04794cede
Size

609KB
MD5

11c9dc0284ffdaadcb72c1a3146c05ea
SHA1

b7433a7ff8a402f00de75a0215234af7d83d3eaf
SHA256

c7ed05c83baf990e1eb4ea1a9c4529cf244338cb79c3d52338b388e04794cede
SHA512

1469b33dff9f3e67c74bb6a1890f1c85512c59c53eeadc7e7ef5c83d25501315b6b6e3d063f6ee3cdcee12984bb359b08b755c3586dad2ced174bdd26e02bffc
SSDEEP

12288:fL9VTxsRkRG8pC3eLp+1sXVAr8jk5Cv+kYYJTWX72Z1BahCB1rQb:fLCRepC3f1slqI+hYxW41QKrQ

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
c7ed05c83baf990e1eb4ea1a9c4529cf244338cb79c3d52338b388e04794cede
unpack001/out.upx

Files

c7ed05c83baf990e1eb4ea1a9c4529cf244338cb79c3d52338b388e04794cede
.dll windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

ExportTest

Sections

UPX0
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 607KB - Virtual size: 608KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 336KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 247KB - Virtual size: 581KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 1.6MB

UPX1 Size: 607KB - Virtual size: 608KB

.rsrc Size: 1KB - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 336KB - Virtual size: 335KB

.data Size: 247KB - Virtual size: 581KB

.pdata Size: 61KB - Virtual size: 60KB

.rsrc Size: 512B - Virtual size: 444B

.reloc Size: 29KB - Virtual size: 28KB

UPX0
Size: - Virtual size: 1.6MB

UPX1
Size: 607KB - Virtual size: 608KB

.rsrc
Size: 1KB - Virtual size: 4KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 336KB - Virtual size: 335KB

.data
Size: 247KB - Virtual size: 581KB

.pdata
Size: 61KB - Virtual size: 60KB

.rsrc
Size: 512B - Virtual size: 444B

.reloc
Size: 29KB - Virtual size: 28KB