5D2E7EFFC457C9E19183B1329323C5F67FE8C87B7E87CDBDBFC677D5242CCEA8 | Triage

Sharing

General

Target

5D2E7EFFC457C9E19183B1329323C5F67FE8C87B7E87CDBDBFC677D5242CCEA8
Size

4.0MB
MD5

47b57b84514ccb32cc74ea7211cc8a0e
SHA1

d4445c2dbd463735755926ef557eb0801ddf529f
SHA256

5d2e7effc457c9e19183b1329323c5f67fe8c87b7e87cdbdbfc677d5242ccea8
SHA512

cac5404ae11a5e77197f86b967bf03cda79b5b693b145e0fb7b9a85005eababe01decadbf67bb18b32bbe0d6db00e9bdedf7284d8e6dcc8066c1c38a7ccd7f85
SSDEEP

98304:04rsF/ocO1v0jrisWCw29BNFUa30aoqv5p+Xe55wEz:Vy/oH0OjC19d50Ip+Xq5

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

5D2E7EFFC457C9E19183B1329323C5F67FE8C87B7E87CDBDBFC677D5242CCEA8
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 9.7MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE