f025c4ec879518f837fa0462a1ea6531501e201d6171f91593dde581f7d13536 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f025c4ec879518f837fa0462a1ea6531501e201d6171f91593dde581f7d13536
Size

15KB
MD5

ce4c5bf7e8e5e01e50f1918e565612eb
SHA1

11b9e444b31069c081ab43c488145c7ad6b31df9
SHA256

f025c4ec879518f837fa0462a1ea6531501e201d6171f91593dde581f7d13536
SHA512

cd95725f8fa67aabea8e562d259279045e27cc60470ae18e28a50be128a96efa9e61c13ea8897468a680516c1cb2ab0faaaf49f68b4e249d09589e08246d9bf8
SSDEEP

192:N4e58AmJdfFDGRNGac8ZA6ScWa1H/arDj5A9QvN9v7nua5Y72kIMqur6LCIcV3y:qu8A+VMi8yIWa1f+x5junNjqur6FcJy

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

f025c4ec879518f837fa0462a1ea6531501e201d6171f91593dde581f7d13536
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ