08fea5d4f752cc7bc2d0b8f7c848fb7d86cdfdce93af1292e3cc3c899b770ae9

General

Target

08fea5d4f752cc7bc2d0b8f7c848fb7d86cdfdce93af1292e3cc3c899b770ae9
Size

256KB
MD5

7534ddad37570c046f00d73f362e672a
SHA1

13d1d91f005282a5aba33c9679cfc150451b148f
SHA256

08fea5d4f752cc7bc2d0b8f7c848fb7d86cdfdce93af1292e3cc3c899b770ae9
SHA512

9a9b2d09c984e45c8b040c3d3825434ffbe9bf5db708d71c2c2cbf7fc81a01677322fae287e55d2fc6f75e2e8a9c0748ddaa2e4d0efb1e0dc70a85b8d8dc95ac
SSDEEP

6144:tJY/Rp/x9DklFeFd2NGqfoC7ruShYtI70ejVGUscImm8x63:t6vbwlUFdrqfo0uShsYHjLspZj

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
08fea5d4f752cc7bc2d0b8f7c848fb7d86cdfdce93af1292e3cc3c899b770ae9
unpack001/out.upx

Files

08fea5d4f752cc7bc2d0b8f7c848fb7d86cdfdce93af1292e3cc3c899b770ae9
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 256KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 248KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 336KB - Virtual size: 336KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 256KB

UPX1 Size: 248KB - Virtual size: 252KB

.rsrc Size: 7KB - Virtual size: 8KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 336KB - Virtual size: 336KB

.rdata Size: 99KB - Virtual size: 99KB

.data Size: 11KB - Virtual size: 15KB

.gfids Size: 512B - Virtual size: 416B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 25KB - Virtual size: 25KB

UPX0
Size: - Virtual size: 256KB

UPX1
Size: 248KB - Virtual size: 252KB

.rsrc
Size: 7KB - Virtual size: 8KB

.text
Size: 336KB - Virtual size: 336KB

.rdata
Size: 99KB - Virtual size: 99KB

.data
Size: 11KB - Virtual size: 15KB

.gfids
Size: 512B - Virtual size: 416B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 25KB - Virtual size: 25KB