b3105b331d03bfebf569395c6763208ab2fc8a4de925e914da94c9c1a83ff964

General

Target

b3105b331d03bfebf569395c6763208ab2fc8a4de925e914da94c9c1a83ff964
Size

10.3MB
MD5

2358157f79f3b9aa08da5bfd44f5b90b
SHA1

2625d0d7887540f7bf35287f322249adc50e7260
SHA256

b3105b331d03bfebf569395c6763208ab2fc8a4de925e914da94c9c1a83ff964
SHA512

cb7a1a0c88e4d5cab1c87a39d1327cdf6da1727baa02c088ab3416ba3645fee712252f851968014d93ab59f289b966b3161dcfac126e755449d20d344d930b7d
SSDEEP

196608:d7nGZnx8XADsAoisapI5umux+2MPBJXPe2sia6uQgeUhdluV64:ZnlwDsAoiz4jux+/ptPjsi9MRhdli

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
b3105b331d03bfebf569395c6763208ab2fc8a4de925e914da94c9c1a83ff964
unpack001/out.upx

Files

b3105b331d03bfebf569395c6763208ab2fc8a4de925e914da94c9c1a83ff964
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 851KB - Virtual size: 852KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 368KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.5MB

UPX1 Size: 851KB - Virtual size: 852KB

.rsrc Size: 27KB - Virtual size: 28KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 368KB - Virtual size: 368KB

.data Size: 26KB - Virtual size: 45KB

.rsrc Size: 38KB - Virtual size: 38KB

.reloc Size: 146KB - Virtual size: 145KB

UPX0
Size: - Virtual size: 1.5MB

UPX1
Size: 851KB - Virtual size: 852KB

.rsrc
Size: 27KB - Virtual size: 28KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 368KB - Virtual size: 368KB

.data
Size: 26KB - Virtual size: 45KB

.rsrc
Size: 38KB - Virtual size: 38KB

.reloc
Size: 146KB - Virtual size: 145KB