73eff54fb8e9f2b05d9694bbef74205e58b7f1c2c5f1dd4a06b5407552292698 | Triage

Sharing

General

Target

73eff54fb8e9f2b05d9694bbef74205e58b7f1c2c5f1dd4a06b5407552292698
Size

50KB
MD5

d4bcc0752f7f0fcd61d01add43d13370
SHA1

7ee35085b50d4d48cce0013cb74650d5c1891370
SHA256

73eff54fb8e9f2b05d9694bbef74205e58b7f1c2c5f1dd4a06b5407552292698
SHA512

f17f90d3e8013e79b9d209d1f7d063ff2b86435f0d6cf8db73d841f383966fde85ab8f546b46902a1c9554a799873f1b0b719217fb07f8f5a85a79c545cf2d4b
SSDEEP

768:pTMj9A0DE0w8XPhSIU2uyZjKYy6h38kAgI+193azAt07TGFFrL31lE6tFHJ:1Mj0BgPsfny3TAgIcGB7Sz9zp

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

73eff54fb8e9f2b05d9694bbef74205e58b7f1c2c5f1dd4a06b5407552292698
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 280KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 288KB - Virtual size: 286KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ