E31E725909B115601EFEA63FDECD2CA3C283657CB752FB7C9C46B19FFB23BED9 | Triage

Sharing

General

Target

E31E725909B115601EFEA63FDECD2CA3C283657CB752FB7C9C46B19FFB23BED9
Size

4.0MB
MD5

8ce9e5d7d30ab124b69bc3ff0c1d9d4c
SHA1

65aa51dc471515d16e4350fc0fbd8b302f468ec0
SHA256

e31e725909b115601efea63fdecd2ca3c283657cb752fb7c9c46b19ffb23bed9
SHA512

724757de3f0f4228c373cbff27f6375998a988ea7d2f5bbec89504f5e438a3e9ee621a2cb229122d8e2934b4d0910a5317d7e09d890a3aeb0724c54655910f27
SSDEEP

98304:C9dvOo1C440rtymmfn2LQkR82FkvMOiuHpOtmExb:Cnvb4zfSQkR82CVbHpOv1

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

E31E725909B115601EFEA63FDECD2CA3C283657CB752FB7C9C46B19FFB23BED9
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 9.7MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE