0a0f1578159ac8cd18380f9a0375adc3737160c3af60a9f6822aac16f1c121ad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a0f1578159ac8cd18380f9a0375adc3737160c3af60a9f6822aac16f1c121ad
Size

6KB
MD5

4c0708743af1e9343022ea07608fdd56
SHA1

74b4eda5671cbe2483e4e0faa192fcb91f558cef
SHA256

0a0f1578159ac8cd18380f9a0375adc3737160c3af60a9f6822aac16f1c121ad
SHA512

813005ef9f0093579f9d525b0a2ed42ed4db865a39b401ba95b6a200989baed01182866692597f63ec5ab1be0fee75260d02c5e0d8e66bc3eaf69c46b7250343
SSDEEP

96:GiuukGQqzt5ckjg9dnIyjvoJ4ZLxTH+3Q9zFzU2biS5khb:tHDQ6VjOIwgmlxT+3Q9hoS5kp

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

0a0f1578159ac8cd18380f9a0375adc3737160c3af60a9f6822aac16f1c121ad
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ