76510d0f9af3dacdc1369d18266b7e17d457ebed313097920f92c31855b09135 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76510d0f9af3dacdc1369d18266b7e17d457ebed313097920f92c31855b09135
Size

4.3MB
MD5

de453581a39f0dcc9365eed4b6a14ccc
SHA1

7174c896577f999cbe831f57f01caed896ee55d4
SHA256

76510d0f9af3dacdc1369d18266b7e17d457ebed313097920f92c31855b09135
SHA512

c73bf448a61db006de6a6147f4d693a871835ed58514cab0c5dc3cb927944f65642351c96ffd89938ff96dbc4b85eb558ee859901dd9f926eab3773c2b919284
SSDEEP

98304:HjEaEnVyaLTArjGvjkbuLtex6IML1bIT4PAzGbGAmn4qCjk3q:Hoeeo+C6Iw1A+/mn4djgq

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

76510d0f9af3dacdc1369d18266b7e17d457ebed313097920f92c31855b09135
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 9.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4.3MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE