53ba8be5ddb3bbe45415e5c3088327fbe2fc8f05303e0c0996ddc7431f695efc | Triage

Sharing

General

Target

53ba8be5ddb3bbe45415e5c3088327fbe2fc8f05303e0c0996ddc7431f695efc
Size

362KB
MD5

512e0a4ca28b3894908be81783039320
SHA1

7240614d26e3e8b5a5c06f9f93381d2b894babf9
SHA256

53ba8be5ddb3bbe45415e5c3088327fbe2fc8f05303e0c0996ddc7431f695efc
SHA512

d30a0988e2f4055b4671a677cb351ead747cf890b5e13534f6dada1b44e145046f03f741caf432d604e65d6122fe6ed40c88f72d78998aa75a34b9d1488e0fc7
SSDEEP

6144:tE2XIyTwB5WJ6l5X/fymueThqCoFYzhmbsw6q5mk7AFaTCrR25CR+l:trIyaWJ6l5Cm5ThqCoC2pnMkOaeI5J

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

53ba8be5ddb3bbe45415e5c3088327fbe2fc8f05303e0c0996ddc7431f695efc
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 336KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 358KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 672KB - Virtual size: 671KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ