51870f98aefff494cc0b674c94c55501d3be3b83e67920be042a1914d3cbb84f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

51870f98aefff494cc0b674c94c55501d3be3b83e67920be042a1914d3cbb84f
Size

106KB
MD5

7407e9474f77b36dc0dfb5c6c56745a0
SHA1

4faecfacb73f1001ca2dfa183128a7875539a972
SHA256

51870f98aefff494cc0b674c94c55501d3be3b83e67920be042a1914d3cbb84f
SHA512

b7148fc1b4de9bb86173e0fe4eedf05f0be0855beb4fdb178245dc4525dae8def2b60f7e71a660c5d3ece7ef2c467c676540e28b6fdb479e3269f204e8b80367
SSDEEP

3072:QuE+kcrP9gAfKREkmucm+1BqONaxo+lzQ:g+kGP9gACem+1BVCoL

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

51870f98aefff494cc0b674c94c55501d3be3b83e67920be042a1914d3cbb84f
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ivetrje
Size: 4KB - Virtual size: 72KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE