507c1b5eb6e071996d370e686e6b7c1776595107e0b530d3313b265fa935be7b | Triage

Sharing

General

Target

507c1b5eb6e071996d370e686e6b7c1776595107e0b530d3313b265fa935be7b
Size

539KB
MD5

65c5b8500bca2dbdd13498b67a7d45a0
SHA1

9be856543e9318ea52c0cf04e092a53e0248eae9
SHA256

507c1b5eb6e071996d370e686e6b7c1776595107e0b530d3313b265fa935be7b
SHA512

c1532758d221bd719692c66cf36a78e925a80784a6d73539225d1486d02bef221ade40b44fb7d301af447790e5dbaa5c76a846d60127e3888b671387a0d2ae60
SSDEEP

12288:BO1rqo6eFdT9cQq96NbJ4g5BbaQfwyRyrq0f9b:EZqo64dsdSaZyRApZ

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

507c1b5eb6e071996d370e686e6b7c1776595107e0b530d3313b265fa935be7b
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1000KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 489KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.2UPX1
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE