203229e8429eb7569b11a208c4dee44a

General

Target

203229e8429eb7569b11a208c4dee44a
Size

553KB
MD5

203229e8429eb7569b11a208c4dee44a
SHA1

0cd3c64ee31a9716702bc6d528a9b3bdbded1513
SHA256

08a3f881abaec4449ef8e67421987c3335747b5af6258b69df62a4e8e30831d9
SHA512

9009c13c28bcf1d1f8753ad261c44cda07847629f8a8df7071e77eae8a2a1828dd944ef1ec41feb3ed1d86a5c4bcabd3b14692e443f0fe3c50809362c04f2108
SSDEEP

12288:+cQGyhPLjaQjaIYCxYIKD1F8W697faxJqaExofdU6CSuJs:GG2LWQjaIv+IC/o7yxXEnBJ

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
203229e8429eb7569b11a208c4dee44a
unpack001/out.upx

Files

203229e8429eb7569b11a208c4dee44a
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 552KB - Virtual size: 552KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 443KB - Virtual size: 442KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 92KB

UPX1 Size: 552KB - Virtual size: 552KB

.rsrc Size: 512B - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 99KB - Virtual size: 99KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 443KB - Virtual size: 442KB

.reloc Size: 5KB - Virtual size: 5KB

UPX0
Size: - Virtual size: 92KB

UPX1
Size: 552KB - Virtual size: 552KB

.rsrc
Size: 512B - Virtual size: 4KB

.text
Size: 99KB - Virtual size: 99KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 443KB - Virtual size: 442KB

.reloc
Size: 5KB - Virtual size: 5KB