ca8d19fc32cf36d8c94b9ef38e84a45d68ee5a0692f0e8d61421af073747e54c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca8d19fc32cf36d8c94b9ef38e84a45d68ee5a0692f0e8d61421af073747e54c
Size

171KB
MD5

e79798a57b777b6cd83a43b710c430ef
SHA1

54586e54d9c9f3f1a27e6f5c9f6b92870b0b01ee
SHA256

ca8d19fc32cf36d8c94b9ef38e84a45d68ee5a0692f0e8d61421af073747e54c
SHA512

855ae0f077557e49272a813a937c87e1ce13ab3cd21b5cd49e336c9723d5079142a296a2745bbdc0ef468ba6c2c40714290f13051a0828eb7c393ac59ac36ef0
SSDEEP

3072:byhtfezoVuG0ysK/5Iw8BKnyiLJpdHIH6tqBBhffZ4QeABvpV:UkzKBpkKLJTh0BdZ4Q/

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

ca8d19fc32cf36d8c94b9ef38e84a45d68ee5a0692f0e8d61421af073747e54c
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 146KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ