2347ff77754a6955a11c17b509278af371f08cc04e35be568a2e2c121e11e43c

General

Target

2347ff77754a6955a11c17b509278af371f08cc04e35be568a2e2c121e11e43c
Size

749KB
MD5

aa8c5af4876effbad672f008064fe8a2
SHA1

a390a81a895f3e16c2ca526b0dd2dc1aecf91ae7
SHA256

2347ff77754a6955a11c17b509278af371f08cc04e35be568a2e2c121e11e43c
SHA512

b82a6c9c0e7c92753f11124fed541e430e8cd393c07c7bd2fe21d1a49bf36a6610a2e0fb0e8458399f1f336a402acd777ef1750fcb29b1f357393af4182d4057
SSDEEP

12288:5iIda0PeR3hTrsWkGh8aIJTKsbHusE0bAoHhtWwCqDZPIbQcUWW9qKxgj+UnaMuv:Rv0RHZy97ESFHhtdZIbQuKcXeqk6/w

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
2347ff77754a6955a11c17b509278af371f08cc04e35be568a2e2c121e11e43c
unpack001/out.upx

Files

2347ff77754a6955a11c17b509278af371f08cc04e35be568a2e2c121e11e43c
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 748KB - Virtual size: 748KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 894KB - Virtual size: 894KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 925KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.symtab
Size: 512B - Virtual size: 4B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.3MB

UPX1 Size: 748KB - Virtual size: 748KB

UPX2 Size: 512B - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 894KB - Virtual size: 894KB

.rdata Size: 925KB - Virtual size: 924KB

.data Size: 37KB - Virtual size: 208KB

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 48KB - Virtual size: 47KB

.symtab Size: 512B - Virtual size: 4B

UPX0
Size: - Virtual size: 1.3MB

UPX1
Size: 748KB - Virtual size: 748KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 894KB - Virtual size: 894KB

.rdata
Size: 925KB - Virtual size: 924KB

.data
Size: 37KB - Virtual size: 208KB

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 48KB - Virtual size: 47KB

.symtab
Size: 512B - Virtual size: 4B