f137c4755721860db27a04634d2c84240788f6ce41664ab4cf8930a6463be657 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f137c4755721860db27a04634d2c84240788f6ce41664ab4cf8930a6463be657
Size

825KB
MD5

63b3a11539cba7639cdd3286990fca40
SHA1

276e1ff43b2f1ff98cb3250823c68ec0c2edd269
SHA256

f137c4755721860db27a04634d2c84240788f6ce41664ab4cf8930a6463be657
SHA512

29e5b7a55958e8352ec5eab4de55cb7777ea1909772446dd370bc55f7da98083de7977e429f44ff3a53e2f999bc13ec1ddf2db147ca562488a954bcc04fc9919
SSDEEP

12288:gngwSxFYLDkOcWkU9KozEQAXmqCcBMBAsB6HcR60/WacoymP4V:ggwSxFtBWx9KKEQYhCcBqdMch/2zo

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

f137c4755721860db27a04634d2c84240788f6ce41664ab4cf8930a6463be657
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 540KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 261KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�
Size: 86KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE