2c2f24c9b1f90348402526b5339b64aa33df235756d6522dbbfef0a29b92b740 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c2f24c9b1f90348402526b5339b64aa33df235756d6522dbbfef0a29b92b740
Size

29KB
MD5

5fed121274c66f43870af9a23e9f9ecc
SHA1

d61b759a483219518098d2c855ed7c289394622d
SHA256

2c2f24c9b1f90348402526b5339b64aa33df235756d6522dbbfef0a29b92b740
SHA512

3233c160a5c46f8a62e87ed678b203d9dc0d3f7032c15ef0e47759fd490f954de874189b7cf5901ea750aa0ffd5e27df791731f2887ea86be0a85a58bf9d4a05
SSDEEP

768:byY8xeFWTk1cwmn6HLR2VeA+KUD6ooq7Q3H6ioQJg:b0c8w1cwm6HL4l+8ooqk3roUg

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

2c2f24c9b1f90348402526b5339b64aa33df235756d6522dbbfef0a29b92b740
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 639B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.spm
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE