769000d3269bc612adfccbba399e8baff46fcb16e8308a7b93d9da7e2bbf5ab5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

769000d3269bc612adfccbba399e8baff46fcb16e8308a7b93d9da7e2bbf5ab5
Size

917KB
MD5

3746cc8d123e3fdce2474c203f9d3ae0
SHA1

59648a025824c7c7526d66edf7b0639462f55c0e
SHA256

769000d3269bc612adfccbba399e8baff46fcb16e8308a7b93d9da7e2bbf5ab5
SHA512

7e3ee55a8fdf0874272bf478d868b4b3ec6167b5edb94a2c4b4843366204b617983c4086538f7fa0f768dd033771e5ea567bd23911cc76c43fb23f30936303d9
SSDEEP

12288:gSNC80I+cR3R03VseuO85pbtMmxXnm2MIL6n3EucZ61xAmGTGOm:g4ChZcRi3VsesrmpIG0ucZ6jGTGOm

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

769000d3269bc612adfccbba399e8baff46fcb16e8308a7b93d9da7e2bbf5ab5
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

U�T0
Size: - Virtual size: 380KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 107KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xqgbjpe
Size: 131KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ftyopmi
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fddmtpa
Size: 109KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wiaahrh
Size: 109KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

avlxwbx
Size: 33KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cnuyboc
Size: 103KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE