d45cf52f9934548a875ed3122645d0624370fd8ad5529f8b0892c25863e65953 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d45cf52f9934548a875ed3122645d0624370fd8ad5529f8b0892c25863e65953
Size

40KB
MD5

df04622904bd5d7123a4b10973c5c93e
SHA1

14434b6386aaf3cac236a005a90febd3b19dbd36
SHA256

d45cf52f9934548a875ed3122645d0624370fd8ad5529f8b0892c25863e65953
SHA512

265c5b9fa3002014f3f5bff3a6b02b53d2c356486d10069cd8c7594814ee1f449fb25d834941f868e6a76ec558b9da655b5681ef7c4fb0cced7deaf87c44dc4a
SSDEEP

768:QS7BkDTYFkg8v78THqQMHAmUBLEj9VuaK7dBjgyfjnaDv:QlLVvEKQMAlJWMak1Xev

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

d45cf52f9934548a875ed3122645d0624370fd8ad5529f8b0892c25863e65953
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pe2
Size: 83B - Virtual size: 83B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pe��
Size: 50B - Virtual size: 50B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ