313bc4b30680a7b4c2397a1edab7f4e967f7dbf823d2a1d24dab24ce79ddc126

General

Target

313bc4b30680a7b4c2397a1edab7f4e967f7dbf823d2a1d24dab24ce79ddc126
Size

580KB
MD5

38a042f9d90ce7b08274f499dd3bf1ef
SHA1

e1bedee16ea486fab29684288eb099d9756b010f
SHA256

313bc4b30680a7b4c2397a1edab7f4e967f7dbf823d2a1d24dab24ce79ddc126
SHA512

6ee918feaa86d48d3c425959c93ad13ece533fce494561de027d3ba661a1deb9367fed10a282a8b292366e1632d69b477db3424001ca4516720fa65045971502
SSDEEP

12288:Tkrd4t/tY+MBqLgsAPTX3jf9NSmzdCFXjegDffpx+/YwnH7uEhKiq:Tm4ltY+RgsAn3n4FBDnpsgwSEhKiq

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
313bc4b30680a7b4c2397a1edab7f4e967f7dbf823d2a1d24dab24ce79ddc126
unpack001/out.upx

Files

313bc4b30680a7b4c2397a1edab7f4e967f7dbf823d2a1d24dab24ce79ddc126
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 575KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 436KB - Virtual size: 448KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.1MB

UPX1 Size: 575KB - Virtual size: 576KB

.rsrc Size: 4KB - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 436KB - Virtual size: 448KB

.idata Size: 20KB - Virtual size: 18KB

.rsrc Size: 12KB - Virtual size: 11KB

.reloc Size: 48KB - Virtual size: 46KB

UPX0
Size: - Virtual size: 1.1MB

UPX1
Size: 575KB - Virtual size: 576KB

.rsrc
Size: 4KB - Virtual size: 4KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 436KB - Virtual size: 448KB

.idata
Size: 20KB - Virtual size: 18KB

.rsrc
Size: 12KB - Virtual size: 11KB

.reloc
Size: 48KB - Virtual size: 46KB