33228e839b81dda113c5b160fe769ff668b270b89b8fa904e7c9b7542ede04ca | Triage

Sharing

General

Target

33228e839b81dda113c5b160fe769ff668b270b89b8fa904e7c9b7542ede04ca
Size

513KB
MD5

0c8d1b48f0e46a0f0d83a6dacf299e30
SHA1

c4ebdbc812cde32a799674101fc39828e2a75f15
SHA256

33228e839b81dda113c5b160fe769ff668b270b89b8fa904e7c9b7542ede04ca
SHA512

e1ee3ce9459606818520210d2d83a1a5626ba8abe2a6650a2dbd0908c4aa5eaccb121ce041760a29883978737b14962e1954fd2e04e6ca7dc9486b0e28169ec7
SSDEEP

12288:meZ/F4DRJ9mTeXwAbYSVWMpN5hOYK39zd5OUz1:mfVHAqZVWMpN5hOYK3X5OUz1

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

33228e839b81dda113c5b160fe769ff668b270b89b8fa904e7c9b7542ede04ca
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 896KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 410KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.EUPX1
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE