a6b4518d4fe63022c6637ee9a1be5c52d5f410ccffef615857691d80af6a3a7c | Triage

Sharing

General

Target

a6b4518d4fe63022c6637ee9a1be5c52d5f410ccffef615857691d80af6a3a7c
Size

135KB
MD5

63ad30b98c976717941b784f75eec2c0
SHA1

fcf7714969ccffb0492117851e5083b9f278af5a
SHA256

a6b4518d4fe63022c6637ee9a1be5c52d5f410ccffef615857691d80af6a3a7c
SHA512

b510f2bc92be91fac09eca8e183313dc690df21894e3627fe1996a2d28de4f83856b847417b4692bbe4310c73b614ffb1c575efa2a4be3e7a46cce18075662b2
SSDEEP

3072:QNqMDUcnvXSj2wa2WI0oUSTRtWfcV64SsEE1URZANuZ7k:qqkUcnv0tfbTVCE1UUNuRk

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

a6b4518d4fe63022c6637ee9a1be5c52d5f410ccffef615857691d80af6a3a7c
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ