aa2375c6f9a2aa79a53577ff9a0de4850c8691f9c1e7ce48b1fab286d0c366b0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa2375c6f9a2aa79a53577ff9a0de4850c8691f9c1e7ce48b1fab286d0c366b0
Size

259KB
MD5

84d8a200f50b3f6bfd5d36d6301105b0
SHA1

1504bb97d6b6eeeb4f212a94855267801233c20e
SHA256

aa2375c6f9a2aa79a53577ff9a0de4850c8691f9c1e7ce48b1fab286d0c366b0
SHA512

fd38a110f33404bef501879beadeb7271bdb0b628536c6637be6bd0034a4575c622eb3da7bc04bb098dba39b5d628b47d4c8be754dead9f02134be31292a25dc
SSDEEP

3072:dBqacvSTeBzpjA9WigIjH53MspAktx8hY:zR2STeFOJnZP18hY

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

aa2375c6f9a2aa79a53577ff9a0de4850c8691f9c1e7ce48b1fab286d0c366b0
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 236KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE