0cc968d0c6fdd901ad900096a2334a4fa4beeccb6ab749eb18ae723eb3a66f23 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0cc968d0c6fdd901ad900096a2334a4fa4beeccb6ab749eb18ae723eb3a66f23
Size

40KB
MD5

6de9b32fd1fb6bc04b04c4e8a3309817
SHA1

02c04027d04c75112500e6d32edd6847e342c496
SHA256

0cc968d0c6fdd901ad900096a2334a4fa4beeccb6ab749eb18ae723eb3a66f23
SHA512

90ca68ffe7bb08357e977268bcb964c7e6b875077e52ad9d08708bc35617ff81ef1a58ae9e35d14986ba5d7d193b2dbf2259fb1eeb9cb228db27d2fbaa6be2f4
SSDEEP

768:39bVcfrMWN6Olr3rhz+d4LSDiNrlx3hlMco1uQWCnAGuv71nIMdfr:39pcTMo6Ar3N+d4LKi1lxhylrAGuzdIM

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

0cc968d0c6fdd901ad900096a2334a4fa4beeccb6ab749eb18ae723eb3a66f23
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 56KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ