088ada5e03479e8d32491c03b0868ccc

General

Target

088ada5e03479e8d32491c03b0868ccc
Size

119KB
MD5

088ada5e03479e8d32491c03b0868ccc
SHA1

656c75782966240e7d8683c82d3aca04e7d54539
SHA256

21999b251161e67213d0fd5dbaedf732f62875ff6c939c8ac46469b7afd58549
SHA512

c940f9d4496ce66b7e3ee85f3160b2fed5a91a0e767fb1c0d56bb808aab981f64358a0a36753efd8d9274c290f9be04412663d5efed6d9b9f90eceb6a34ffbf4
SSDEEP

1536:yGsHJmbfNj+jd6Yb6Y+CPxtZqiHTjrgvxhX5a5eiJFtmpMtb7e3DSMJsOhhcwHzK:yGsHI1j+sc+BiHTAQ5TFtrsnJs6gpu4

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
088ada5e03479e8d32491c03b0868ccc
unpack001/out.upx

Files

088ada5e03479e8d32491c03b0868ccc
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 156KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 115KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 48KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 68KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 156KB

UPX1 Size: 115KB - Virtual size: 116KB

.rsrc Size: 3KB - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 48KB - Virtual size: 135KB

.data Size: - Virtual size: 6KB

.rsrc Size: 4KB - Virtual size: 2KB

.adata Size: 68KB - Virtual size: 114KB

UPX0
Size: - Virtual size: 156KB

UPX1
Size: 115KB - Virtual size: 116KB

.rsrc
Size: 3KB - Virtual size: 4KB

.text
Size: 48KB - Virtual size: 135KB

.data
Size: - Virtual size: 6KB

.rsrc
Size: 4KB - Virtual size: 2KB

.adata
Size: 68KB - Virtual size: 114KB