dd9117253aee91273e6b49ad590d035dad8c5602c03a923d6fe7c31cd3e93694 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd9117253aee91273e6b49ad590d035dad8c5602c03a923d6fe7c31cd3e93694
Size

6.5MB
MD5

7168e77dbab00107d6a7edf1627e7eff
SHA1

4277ca8d762e63bd5bb339f9ab58e087f256729a
SHA256

dd9117253aee91273e6b49ad590d035dad8c5602c03a923d6fe7c31cd3e93694
SHA512

e5fdea4938c13c66aaf73fa12ae7958011c2970826ba86880902c74afc69bd216542b4866420f87623fa9fc50522285273d0c0d2023b45145d7ce602eb9a89dd
SSDEEP

24576:Tk9LYdjwPklMDy3/VE+J//C8ZFvewjXLK:Tq3+jjW

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

dd9117253aee91273e6b49ad590d035dad8c5602c03a923d6fe7c31cd3e93694
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 388KB - Virtual size: 388KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 85KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE