7aab64ca1ee768d93c0bb3356adeab4a94047803658c8637fd6633a78faf2e05 | Triage

Sharing

General

Target

7aab64ca1ee768d93c0bb3356adeab4a94047803658c8637fd6633a78faf2e05
Size

240KB
MD5

578b9aae50bab93d90e070f0f23a3cc0
SHA1

2bb4404ce1571eb1a9779edbc02c75e6d4d580a7
SHA256

7aab64ca1ee768d93c0bb3356adeab4a94047803658c8637fd6633a78faf2e05
SHA512

494889012ba1f52c41ff09f85c1e5c5b8a076f8045a04ad3e5494c7c3eb15607e95cb197edb50f355a26595f48abb09b243cabd42e655cc0e9cfa3d4b0beff63
SSDEEP

6144:mshXJafH0aiKuXxR9arh56NNOxvLHkAWUgybKvgpRiAdJSpERxuXooTZ23GIg:m0ctiKuXxR9uOOHmSRimSpERKF23G

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

7aab64ca1ee768d93c0bb3356adeab4a94047803658c8637fd6633a78faf2e05
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rol
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE