65a33d2a28e035609b7b640b83fc4b20

General

Target

65a33d2a28e035609b7b640b83fc4b20
Size

122KB
MD5

65a33d2a28e035609b7b640b83fc4b20
SHA1

5f5efa0003a51f5ddd98200e7a75c952458eb5c4
SHA256

39f7e9f7bddb7f60bf32f8993ae8bab38aee5e70547effe927a2f83ce65b5bd4
SHA512

e23239321f162b31f412490d704c8ad45295342f6863a901b675c42edcff476363164787361bd98cd5243045cadf68100fb2683c1177e9881f83efe3d4b7df8c
SSDEEP

3072:QBVNM8QjNOmPI3O2jA3clME0YPW3AUPHIrGVJlTL:aY8QjTQepc7ioQ

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
65a33d2a28e035609b7b640b83fc4b20
unpack001/out.upx

Files

65a33d2a28e035609b7b640b83fc4b20
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 4.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 113KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 728KB - Virtual size: 732KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.000
Size: 648KB - Virtual size: 648KB

IMAGE_SCN_MEM_READ

.000
Size: 648KB - Virtual size: 648KB

IMAGE_SCN_MEM_READ

.000
Size: 648KB - Virtual size: 648KB

IMAGE_SCN_MEM_READ

.000
Size: 648KB - Virtual size: 648KB

IMAGE_SCN_MEM_READ

.000
Size: 648KB - Virtual size: 648KB

IMAGE_SCN_MEM_READ

.rdata
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 645KB - Virtual size: 644KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 4.6MB

UPX1 Size: 113KB - Virtual size: 116KB

.rsrc Size: 5KB - Virtual size: 8KB

Headers

File Characteristics

Sections

.text Size: 728KB - Virtual size: 732KB

.000 Size: 648KB - Virtual size: 648KB

.000 Size: 648KB - Virtual size: 648KB

.000 Size: 648KB - Virtual size: 648KB

.000 Size: 648KB - Virtual size: 648KB

.000 Size: 648KB - Virtual size: 648KB

.rdata Size: 196KB - Virtual size: 196KB

.data Size: 17KB - Virtual size: 20KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 645KB - Virtual size: 644KB

UPX0
Size: - Virtual size: 4.6MB

UPX1
Size: 113KB - Virtual size: 116KB

.rsrc
Size: 5KB - Virtual size: 8KB

.text
Size: 728KB - Virtual size: 732KB

.000
Size: 648KB - Virtual size: 648KB

.000
Size: 648KB - Virtual size: 648KB

.000
Size: 648KB - Virtual size: 648KB

.000
Size: 648KB - Virtual size: 648KB

.000
Size: 648KB - Virtual size: 648KB

.rdata
Size: 196KB - Virtual size: 196KB

.data
Size: 17KB - Virtual size: 20KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 645KB - Virtual size: 644KB