70d68416e3c45a4e97372123c59b43fcaf5556537c8a725827a93484d5569f5b | Triage

Sharing

General

Target

70d68416e3c45a4e97372123c59b43fcaf5556537c8a725827a93484d5569f5b
Size

4.0MB
MD5

a3b91b215ed2a17209b8cb630d78ceca
SHA1

71c7246123ac052304af7050442bef4aa810d00b
SHA256

70d68416e3c45a4e97372123c59b43fcaf5556537c8a725827a93484d5569f5b
SHA512

f0c25f247dbad0df5637dae142def8b80747e30353fdc1df8205e3498b08cf6e0447a24b716ec37f7e78f87aeddd2815962ebf7e37fb28fc224bc1a3ccf46001
SSDEEP

98304:nteZ9uwGNWxnBjSgIjfNXmcszIiUlfSz3oTpN7CWmcmp8b5bW:teRjxnCbQHzBUZTpN22E8J

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

70d68416e3c45a4e97372123c59b43fcaf5556537c8a725827a93484d5569f5b
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 9.8MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE