f3b3bf9ffd8ad72a6b19e57e996c9b55000cc073aba4b3ec23dff5d76a374e1c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3b3bf9ffd8ad72a6b19e57e996c9b55000cc073aba4b3ec23dff5d76a374e1c
Size

32KB
MD5

66f7296f55b4ff29dd3cb88ef00f4890
SHA1

a480bfc846dcc9ebd7091189658e7e0e02440cee
SHA256

f3b3bf9ffd8ad72a6b19e57e996c9b55000cc073aba4b3ec23dff5d76a374e1c
SHA512

7b0def512f5775658aa6886dc9b0810a2c5dbf8d69fefd3667d56e2ea00d2fd4ecd1c5715f62bb0c4060cf1b57b8877652514604f508c9450173c325f0e8f3fe
SSDEEP

768:7yjyG9TERFA+58KGwGmqtuR3odaN3yyUMRpDQnzzgDUu/:7yj79TOFA+kldaNBxRizgIu/

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

f3b3bf9ffd8ad72a6b19e57e996c9b55000cc073aba4b3ec23dff5d76a374e1c
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE