f10395fd16a1ebaa07ed96a5020c5b6899347c5e71c54fc1793fde305013d530 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f10395fd16a1ebaa07ed96a5020c5b6899347c5e71c54fc1793fde305013d530
Size

96KB
MD5

68e1bc5a72c8ebc5200fbc6593a65680
SHA1

fd88c3c330c58b589589e3535e34ae63c0680d2a
SHA256

f10395fd16a1ebaa07ed96a5020c5b6899347c5e71c54fc1793fde305013d530
SHA512

e747378474510b91b6a89583cb7870952b581d23a95c1666cf8f4718194e8360c07830776f71690e7d0af818a470d3a68cf1d8175432807c71c8ab81e0c3b5ac
SSDEEP

1536:GBstPuIEbl0RDPKo7N6Yc5maK9KKd0IJmg/XE7wy+5RwZ5+4rp5Yl:zPwKDn7N6Yc5mahNRUE8y6o5Yl

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

f10395fd16a1ebaa07ed96a5020c5b6899347c5e71c54fc1793fde305013d530
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 140KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 89KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ