82f6a3c677f1b42407a6ffb35cedb42217981d087d09f1458a8aaa1e988b9a84 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

82f6a3c677f1b42407a6ffb35cedb42217981d087d09f1458a8aaa1e988b9a84
Size

513KB
MD5

cd05fcdefb1b39d9584754a98fdad5de
SHA1

99162221885f7ec7a43c69fb34eb1834d31616a7
SHA256

82f6a3c677f1b42407a6ffb35cedb42217981d087d09f1458a8aaa1e988b9a84
SHA512

e1bc5ede586409b20076783c2dd08263c30001a23d7f3f8fa4cf774b0e071592e7ab19046bf02e80f06e11ce506443d820b4aaefb428e64bd60b085a0bf44bde
SSDEEP

12288:fZ6N1TXA3qdkNIPgyNWdm6Fpk8Dj20EJyHhb2RVdpSDur3:B6zwMkNdyNWdm6nB25ghbUV7SDur3

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

82f6a3c677f1b42407a6ffb35cedb42217981d087d09f1458a8aaa1e988b9a84
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 504KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 496KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 668KB - Virtual size: 666KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ