e2442521f60e02416412bbee05c14ba0f51539d6428854917043d9bdbf75d0f6

Sharing

Copy URL Twitter E-mail

General

Target

e2442521f60e02416412bbee05c14ba0f51539d6428854917043d9bdbf75d0f6
Size

7.1MB
MD5

e93035c6aa84958cf7a106dc65f59f5e
SHA1

1442f5ba8d2c240b471f26b3fc69d52cebd0f821
SHA256

e2442521f60e02416412bbee05c14ba0f51539d6428854917043d9bdbf75d0f6
SHA512

5de1288a9d991c1af3fe584368867aa4f5ba08923e73dcdc139b4a68cba1dc249d8b0b71e508fa0c986a3a16625511621f5bf54a44fe96e5a20ccc5cd932321d
SSDEEP

196608:EqQWBj6X1tXFMwQW3NVrA2/v8iQHD4x0ciBh9fl0J9yRF3:FQWBMXOUxA28fLciBmJmZ

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
e2442521f60e02416412bbee05c14ba0f51539d6428854917043d9bdbf75d0f6
unpack001/out.upx

Files

e2442521f60e02416412bbee05c14ba0f51539d6428854917043d9bdbf75d0f6
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 5.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 7.1MB - Virtual size: 7.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 4.3MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 324KB - Virtual size: 549KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 295B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 745KB - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/32
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/46
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/65
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/78
Size: 900KB - Virtual size: 899KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/90
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.symtab
Size: 749KB - Virtual size: 748KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 5.9MB

UPX1 Size: 7.1MB - Virtual size: 7.1MB

UPX2 Size: 512B - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 4.3MB - Virtual size: 4.3MB

.rdata Size: 3.9MB - Virtual size: 3.9MB

.data Size: 324KB - Virtual size: 549KB

/4 Size: 512B - Virtual size: 295B

/19 Size: 745KB - Virtual size: 744KB

/32 Size: 142KB - Virtual size: 141KB

/46 Size: 512B - Virtual size: 24B

/65 Size: 1.3MB - Virtual size: 1.3MB

/78 Size: 900KB - Virtual size: 899KB

/90 Size: 277KB - Virtual size: 276KB

.idata Size: 1024B - Virtual size: 988B

.reloc Size: 193KB - Virtual size: 192KB

.symtab Size: 749KB - Virtual size: 748KB

UPX0
Size: - Virtual size: 5.9MB

UPX1
Size: 7.1MB - Virtual size: 7.1MB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 4.3MB - Virtual size: 4.3MB

.rdata
Size: 3.9MB - Virtual size: 3.9MB

.data
Size: 324KB - Virtual size: 549KB

/4
Size: 512B - Virtual size: 295B

/19
Size: 745KB - Virtual size: 744KB

/32
Size: 142KB - Virtual size: 141KB

/46
Size: 512B - Virtual size: 24B

/65
Size: 1.3MB - Virtual size: 1.3MB

/78
Size: 900KB - Virtual size: 899KB

/90
Size: 277KB - Virtual size: 276KB

.idata
Size: 1024B - Virtual size: 988B

.reloc
Size: 193KB - Virtual size: 192KB

.symtab
Size: 749KB - Virtual size: 748KB