4a8234a98332f3d566713c6bd8b2e700N[.]exe

General

Target

4a8234a98332f3d566713c6bd8b2e700N.exe
Size

44KB
MD5

4a8234a98332f3d566713c6bd8b2e700
SHA1

942681b0a68a2bcd60cec8c8069613c19ae02de5
SHA256

24cf160f32dede35685512d6d74ca4fff2d85a7087aaa2bc6433eadd223031ab
SHA512

6192ad05dacfef4007bc94b25e77e4a06b33e0687cf114001a9ad12993ad6c2e25eb5e95fa36a1968a22fcbbc3b63c5b218cfc0b24b68a2355a9d19380ac94b6
SSDEEP

768:TPYM5D8wswoklbg+VNH5XblEcXcoAHNGGS9WzTlqVpU:/8/Tgc+f1lEMAwGSUQ

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
4a8234a98332f3d566713c6bd8b2e700N.exe
unpack001/out.upx

Files

4a8234a98332f3d566713c6bd8b2e700N.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 172KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 172KB

UPX1 Size: 36KB - Virtual size: 36KB

.rsrc Size: 7KB - Virtual size: 8KB

Headers

File Characteristics

Sections

CODE Size: 68KB - Virtual size: 68KB

DATA Size: 1024B - Virtual size: 548B

BSS Size: - Virtual size: 5KB

.idata Size: 32KB - Virtual size: 31KB

.reloc Size: 7KB - Virtual size: 7KB

.rsrc Size: 50KB - Virtual size: 50KB

UPX0
Size: - Virtual size: 172KB

UPX1
Size: 36KB - Virtual size: 36KB

.rsrc
Size: 7KB - Virtual size: 8KB

CODE
Size: 68KB - Virtual size: 68KB

DATA
Size: 1024B - Virtual size: 548B

BSS
Size: - Virtual size: 5KB

.idata
Size: 32KB - Virtual size: 31KB

.reloc
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 50KB - Virtual size: 50KB