f1b2de08564862d253764e83b823380ee2a003b08b9c1922019074e7cf004498

Sharing

Copy URL Twitter E-mail

General

Target

f1b2de08564862d253764e83b823380ee2a003b08b9c1922019074e7cf004498
Size

212KB
MD5

c50498b8b828402b16f5d08a96533d48
SHA1

49bb923039cb30f790811827c3561d87f40bd964
SHA256

f1b2de08564862d253764e83b823380ee2a003b08b9c1922019074e7cf004498
SHA512

8374532f029b93a4657ebfd6a855263b228bd7a21fcb635d9ea4b331507a058f36e4618bf26e331a87577e6d4f65cf52b44e048233dbb2bf03fd8ddb92f4237d
SSDEEP

1536:qeT7BVwxfvEFwjRCeT75eT7BVwxfUtwxfUF3hPrBHfofga45J7p+XI:qmVwRKCC6mVwRUtwRU/rrP7Y4

Score

10^/10

upx

Malware Config

Signatures

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1b2de08564862d253764e83b823380ee2a003b08b9c1922019074e7cf004498

Files

f1b2de08564862d253764e83b823380ee2a003b08b9c1922019074e7cf004498
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 41KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MNHxrWXU
Size: 3KB - Virtual size: 3KB

gzNTGBOx
Size: 3KB - Virtual size: 3KB

AmIXlcxv
Size: 24KB - Virtual size: 24KB

nugyIsAy
Size: 1KB - Virtual size: 1KB

oduuSOSM
Size: 2KB - Virtual size: 1KB

RzFZsPoh
Size: 1024B - Virtual size: 879B

scQeRvSD
Size: 40KB - Virtual size: 39KB

RsioqVDk
Size: 2KB - Virtual size: 2KB

yZQNvhsv
Size: 3KB - Virtual size: 3KB

jneAgkaE
Size: 45KB - Virtual size: 45KB

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: 41KB - Virtual size: 64KB

UPX1 Size: 15KB - Virtual size: 16KB

.rsrc Size: 23KB - Virtual size: 24KB

.imports Size: 512B - Virtual size: 4KB

MNHxrWXU Size: 3KB - Virtual size: 3KB

gzNTGBOx Size: 3KB - Virtual size: 3KB

AmIXlcxv Size: 24KB - Virtual size: 24KB

nugyIsAy Size: 1KB - Virtual size: 1KB

oduuSOSM Size: 2KB - Virtual size: 1KB

RzFZsPoh Size: 1024B - Virtual size: 879B

scQeRvSD Size: 40KB - Virtual size: 39KB

RsioqVDk Size: 2KB - Virtual size: 2KB

yZQNvhsv Size: 3KB - Virtual size: 3KB

jneAgkaE Size: 45KB - Virtual size: 45KB

UPX0
Size: 41KB - Virtual size: 64KB

UPX1
Size: 15KB - Virtual size: 16KB

.rsrc
Size: 23KB - Virtual size: 24KB

.imports
Size: 512B - Virtual size: 4KB

MNHxrWXU
Size: 3KB - Virtual size: 3KB

gzNTGBOx
Size: 3KB - Virtual size: 3KB

AmIXlcxv
Size: 24KB - Virtual size: 24KB

nugyIsAy
Size: 1KB - Virtual size: 1KB

oduuSOSM
Size: 2KB - Virtual size: 1KB

RzFZsPoh
Size: 1024B - Virtual size: 879B

scQeRvSD
Size: 40KB - Virtual size: 39KB

RsioqVDk
Size: 2KB - Virtual size: 2KB

yZQNvhsv
Size: 3KB - Virtual size: 3KB

jneAgkaE
Size: 45KB - Virtual size: 45KB