6d44f2d79bd222a94faeaeb47c9c95ec83b399b8d1d159c3e42da2119e11459b

Sharing

Copy URL Twitter E-mail

General

Target

6d44f2d79bd222a94faeaeb47c9c95ec83b399b8d1d159c3e42da2119e11459b
Size

1.4MB
MD5

800294d03bfbff3fc609e87a3e735f90
SHA1

579e4bd44290a8bec6639b68152df1f89ae78a4a
SHA256

6d44f2d79bd222a94faeaeb47c9c95ec83b399b8d1d159c3e42da2119e11459b
SHA512

b359ff2f3ec5d5e5bd3d8f49770bbe75d300aea0608720c293f90e4484a1e11e39efb262f11450e93cfa0e75959b189e7b8c201e2c2fade1d762abee941c7d4f
SSDEEP

24576:DGCztJ8fj7pB48gkDHajTi8ONAKoMLnfQdIdaX:DxtJ8fj72N2WKoMI

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6d44f2d79bd222a94faeaeb47c9c95ec83b399b8d1d159c3e42da2119e11459b

Files

6d44f2d79bd222a94faeaeb47c9c95ec83b399b8d1d159c3e42da2119e11459b
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 868KB - Virtual size: 868KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 513KB - Virtual size: 516KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports
.rsrc/0/GROUP_ICON/DEFAULT_ICON
.rsrc/0/ICON/10.ico
.rsrc/0/ICON/11.ico
.rsrc/0/ICON/3.ico
.rsrc/0/ICON/4.ico
.rsrc/0/ICON/5.ico
.rsrc/0/ICON/6.ico
.rsrc/0/ICON/7.ico
.rsrc/0/ICON/8.ico
.rsrc/0/ICON/9.ico
.rsrc/0/MANIFEST/1
.xml
.rsrc/2052/BITMAP/1031.bmp
.rsrc/2052/BITMAP/1038.bmp
.rsrc/2052/BITMAP/1138.bmp
.rsrc/2052/BITMAP/1139.bmp
.rsrc/2052/BITMAP/1140.bmp
.rsrc/2052/BITMAP/1141.bmp
.rsrc/2052/BITMAP/1142.bmp
.rsrc/2052/BITMAP/1143.bmp
.rsrc/2052/BITMAP/1144.bmp
.rsrc/2052/BITMAP/1145.bmp
.rsrc/2052/BITMAP/30994.bmp
.rsrc/2052/BITMAP/30995.bmp
.rsrc/2052/BITMAP/30996.bmp
.rsrc/2052/BITMAP/IEXT_IDB_STATEIMAGES.bmp
.rsrc/2052/CURSOR/1
.rsrc/2052/CURSOR/2
.rsrc/2052/CURSOR/3
.rsrc/2052/CURSOR/4
.rsrc/2052/DIALOG/1037
.rsrc/2052/DIALOG/1084
.rsrc/2052/DIALOG/1124
.rsrc/2052/DIALOG/1134
.rsrc/2052/DIALOG/1150
.rsrc/2052/DIALOG/150
.rsrc/2052/DIALOG/286
.rsrc/2052/DIALOG/30721
.rsrc/2052/DIALOG/30722
.rsrc/2052/DIALOG/554
.rsrc/2052/GROUP_CURSOR/1032
.rsrc/2052/GROUP_CURSOR/1033
.rsrc/2052/GROUP_CURSOR/30977
.rsrc/2052/GROUP_ICON/1151
.rsrc/2052/GROUP_ICON/1152
.rsrc/2052/ICON/1.ico
.rsrc/2052/ICON/2.ico
.rsrc/2052/MENU/1039
.rsrc/2052/MENU/127
.rsrc/2052/TEXTINCLUDE/1
.rsrc/2052/TEXTINCLUDE/2
.rsrc/2052/TEXTINCLUDE/3
.rsrc/2052/string.txt
.rsrc/2052/version.txt
.rsrc_1
UPX0
UPX1

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: 868KB - Virtual size: 868KB

UPX1 Size: 513KB - Virtual size: 516KB

.rsrc Size: 43KB - Virtual size: 44KB

.imports Size: 7KB - Virtual size: 8KB

UPX0
Size: 868KB - Virtual size: 868KB

UPX1
Size: 513KB - Virtual size: 516KB

.rsrc
Size: 43KB - Virtual size: 44KB

.imports
Size: 7KB - Virtual size: 8KB