975109aaab77faabe0808017bd2a866904f7f8227f36b9015c2706dd5f8d3a09 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

975109aaab77faabe0808017bd2a866904f7f8227f36b9015c2706dd5f8d3a09
Size

161KB
MD5

cdac0b7dd97f59b441277415e874638b
SHA1

e128f5236d4d487d31f7b10067eeb229e176f3f8
SHA256

975109aaab77faabe0808017bd2a866904f7f8227f36b9015c2706dd5f8d3a09
SHA512

461154d8d440b9f72a5c33c025810b3ba0cd9a0ad1cf9f5cfd105a459f12d20a07cdee51348cfbdd34417ec72f09ac1fd4a7dbd5636daf6a871453ee7907b8f0
SSDEEP

3072:h3t17S8ZiRVY8voXm3Il+YeopYHxNpZG3l5omdY:Nt88ZiRVY8voXm3Il+6pYHzTG34mdY

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

975109aaab77faabe0808017bd2a866904f7f8227f36b9015c2706dd5f8d3a09
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: 52KB - Virtual size: 56KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE