5184c48ae23b8c9853c67a4ec3aebcfaf380f098631a20c7b8405c638289f6e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5184c48ae23b8c9853c67a4ec3aebcfaf380f098631a20c7b8405c638289f6e0
Size

16KB
MD5

69eb605c6491c1c3d8787a97c15ea06d
SHA1

467101da42e188b415fc1bb0af0501f3ca54d1fb
SHA256

5184c48ae23b8c9853c67a4ec3aebcfaf380f098631a20c7b8405c638289f6e0
SHA512

75a0ad9b4f25430d73acdeae183b7ba18493de3c0d408d155ccc3bf31d6cbfdfd40c9f7be86193a7ba23e349fa7cabe5aad0141110fcec959465eb48b744aad2
SSDEEP

384:5wznVKyqCvPSryiZua1Mcb6WuUZjQM2Kr6jPQX5zVl4G:5QnwfCyXTX2jcD

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

5184c48ae23b8c9853c67a4ec3aebcfaf380f098631a20c7b8405c638289f6e0
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 649B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.heb
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE