2ca2eda9a652bbb598f7abab09da08daa2536d82141105f5dd41946139529194

Sharing

Copy URL Twitter E-mail

General

Target

2ca2eda9a652bbb598f7abab09da08daa2536d82141105f5dd41946139529194
Size

13.2MB
MD5

815bc55e51b2e8b54bf7d0b18647c4ff
SHA1

0e069f6d4bd862999ae3d3e320d824436c47d8fc
SHA256

2ca2eda9a652bbb598f7abab09da08daa2536d82141105f5dd41946139529194
SHA512

6dfc4790858bc04e2e23774afac75866dc2ba7da594ac068b230424bcfb37a7a540a33a29c3ee05e4313bcf0d5c747d9899b9db239617718b1f930c4d4865b60
SSDEEP

196608:7Ehk9Mz2VWZcvMh777Rfam9PkOY1Fx5sDinGSuOhztyoBMTCukZrdfuutAZZM7h3:yP29i77JPDI9sDiGSRLMT7odfKIkTK

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ca2eda9a652bbb598f7abab09da08daa2536d82141105f5dd41946139529194

Files

2ca2eda9a652bbb598f7abab09da08daa2536d82141105f5dd41946139529194
.exe windows:5 windows x86 arch:x86

2cf7ec24a6cf009f1a028106f5e77565

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

winmm

midiStreamOut

ws2_32

WSAAsyncSelect

rasapi32

RasHangUpA

user32

GetWindow
CharUpperBuffW

gdi32

LineTo

winspool.drv

DocumentPropertiesA

advapi32

RegQueryValueExA

shell32

SHEmptyRecycleBinA

ole32

CoDisconnectObject

oleaut32

VariantTimeToSystemTime

comctl32

ImageList_Add

oledlg

ord8

wininet

InternetCanonicalizeUrlA

comdlg32

ChooseFontA

Sections

UPX11
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX11
Size: - Virtual size: 8.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX11
Size: - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX11
Size: - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

UPX11
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX11
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX11
Size: - Virtual size: 919KB

IMAGE_SCN_MEM_EXECUTE

UPX11
Size: - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

UPX11
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX11
Size: 11.0MB - Virtual size: 11.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX11
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

UPX11
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX11
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

UPX11
Size: 559KB - Virtual size: 559KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

UPX11
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cf7ec24a6cf009f1a028106f5e77565

Headers

File Characteristics

Imports

kernel32

winmm

ws2_32

rasapi32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

wininet

comdlg32

Sections

UPX11 Size: - Virtual size: 1.5MB

UPX11 Size: - Virtual size: 8.5MB

UPX11 Size: - Virtual size: 352KB

UPX11 Size: - Virtual size: 21KB

UPX11 Size: - Virtual size: 8KB

UPX11 Size: - Virtual size: 4KB

UPX11 Size: - Virtual size: 919KB

UPX11 Size: - Virtual size: 2.5MB

UPX11 Size: 1024B - Virtual size: 968B

UPX11 Size: 11.0MB - Virtual size: 11.0MB

UPX11 Size: 4KB - Virtual size: 3KB

UPX11 Size: 1.7MB - Virtual size: 1.7MB

UPX11 Size: 4KB - Virtual size: 4KB

UPX11 Size: 559KB - Virtual size: 559KB

UPX11 Size: 4KB - Virtual size: 3KB

UPX11
Size: - Virtual size: 1.5MB

UPX11
Size: - Virtual size: 8.5MB

UPX11
Size: - Virtual size: 352KB

UPX11
Size: - Virtual size: 21KB

UPX11
Size: - Virtual size: 8KB

UPX11
Size: - Virtual size: 4KB

UPX11
Size: - Virtual size: 919KB

UPX11
Size: - Virtual size: 2.5MB

UPX11
Size: 1024B - Virtual size: 968B

UPX11
Size: 11.0MB - Virtual size: 11.0MB

UPX11
Size: 4KB - Virtual size: 3KB

UPX11
Size: 1.7MB - Virtual size: 1.7MB

UPX11
Size: 4KB - Virtual size: 4KB

UPX11
Size: 559KB - Virtual size: 559KB

UPX11
Size: 4KB - Virtual size: 3KB