bd1a16d7a0a6a2ddcc6ba4b0125df614

General

Target

bd1a16d7a0a6a2ddcc6ba4b0125df614
Size

182KB
MD5

bd1a16d7a0a6a2ddcc6ba4b0125df614
SHA1

db5a19d505f8b9b34d67e782abf4ad2c3a9b343a
SHA256

9deca1257402979878d225ff5ba995ca4d4b3f09e2c825df59d79365b96dfd0d
SHA512

043db432aba84f639d2e30f701842bb66942f457d6b56a4cfaf3b8eaac733586854148eeed2f084915d74d6fce7d62dbc64f085b40979448f933cf061db62815
SSDEEP

3072:9VOHzsv8rb6Jp4gB9p1GcYnFmqJg40lqJTjnxGsU863mRr6jbCe0krtg6TBY4/kl:9KsiSp1Dsm2g4maTjnxP8XCJkxg6ur

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
bd1a16d7a0a6a2ddcc6ba4b0125df614
unpack001/out.upx

Files

bd1a16d7a0a6a2ddcc6ba4b0125df614
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 179KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_SYSTEM
IMAGE_FILE_UP_SYSTEM_ONLY
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 817B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 72KB

UPX1 Size: 179KB - Virtual size: 180KB

.rsrc Size: 2KB - Virtual size: 4KB

Headers

File Characteristics

Sections

.data Size: 512B - Virtual size: 2KB

.data Size: - Virtual size: 817B

.text Size: 205KB - Virtual size: 205KB

.data Size: - Virtual size: 2KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 11KB

.rsrc Size: 1KB - Virtual size: 1KB

UPX0
Size: - Virtual size: 72KB

UPX1
Size: 179KB - Virtual size: 180KB

.rsrc
Size: 2KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 2KB

.data
Size: - Virtual size: 817B

.text
Size: 205KB - Virtual size: 205KB

.data
Size: - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 1KB - Virtual size: 1KB