29dd4c9ba46dcacf6a1c9c6fb9afab6697bf5e1c8c5b2270f65615171c719bb2

Reason

config extraction: missing cfgextr callback for rule "Gozi_FJ_loader_0"

General

Target

29dd4c9ba46dcacf6a1c9c6fb9afab6697bf5e1c8c5b2270f65615171c719bb2
Size

245KB
MD5

e8030904100adfa66a55e8664d3affe6
SHA1

da507898ab24269e3e6a4573d47d881464196d81
SHA256

29dd4c9ba46dcacf6a1c9c6fb9afab6697bf5e1c8c5b2270f65615171c719bb2
SHA512

b186bd509c6163a680e1d2c259199e8bf0da8d4e327d8fecbbceff725f5883caa334bcc9c655a3346ccc88ca04fa81ac55ed3a3fc41ef1d57a5fa61aec3d9024
SSDEEP

6144:5/9Yu/3LehFhg7WUjqUj558oliqPhqrDPK:Z9Yu/Sd

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29dd4c9ba46dcacf6a1c9c6fb9afab6697bf5e1c8c5b2270f65615171c719bb2

Files

29dd4c9ba46dcacf6a1c9c6fb9afab6697bf5e1c8c5b2270f65615171c719bb2
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 55KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KHaxWuCI
Size: 3KB - Virtual size: 3KB

mlnThuTY
Size: 4KB - Virtual size: 4KB

UgYVxEks
Size: 29KB - Virtual size: 29KB

vdojBEgy
Size: 2KB - Virtual size: 2KB

JOJWzJPx
Size: 1024B - Virtual size: 727B

gFkcacRV
Size: 1KB - Virtual size: 1KB

hstrWOlG
Size: 59KB - Virtual size: 58KB

pbmifbgq
Size: 4KB - Virtual size: 3KB

PslFwFJS
Size: 64KB - Virtual size: 63KB

ITouFVHG
Size: 14KB - Virtual size: 14KB

Sharing

Errors

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 168KB

UPX1 Size: 55KB - Virtual size: 56KB

UPX2 Size: 512B - Virtual size: 4KB

KHaxWuCI Size: 3KB - Virtual size: 3KB

mlnThuTY Size: 4KB - Virtual size: 4KB

UgYVxEks Size: 29KB - Virtual size: 29KB

vdojBEgy Size: 2KB - Virtual size: 2KB

JOJWzJPx Size: 1024B - Virtual size: 727B

gFkcacRV Size: 1KB - Virtual size: 1KB

hstrWOlG Size: 59KB - Virtual size: 58KB

pbmifbgq Size: 4KB - Virtual size: 3KB

PslFwFJS Size: 64KB - Virtual size: 63KB

ITouFVHG Size: 14KB - Virtual size: 14KB

UPX0
Size: - Virtual size: 168KB

UPX1
Size: 55KB - Virtual size: 56KB

UPX2
Size: 512B - Virtual size: 4KB

KHaxWuCI
Size: 3KB - Virtual size: 3KB

mlnThuTY
Size: 4KB - Virtual size: 4KB

UgYVxEks
Size: 29KB - Virtual size: 29KB

vdojBEgy
Size: 2KB - Virtual size: 2KB

JOJWzJPx
Size: 1024B - Virtual size: 727B

gFkcacRV
Size: 1KB - Virtual size: 1KB

hstrWOlG
Size: 59KB - Virtual size: 58KB

pbmifbgq
Size: 4KB - Virtual size: 3KB

PslFwFJS
Size: 64KB - Virtual size: 63KB

ITouFVHG
Size: 14KB - Virtual size: 14KB