4070f48a528b39fa1598ba6913dd8e46d37ef80af455d512180043edaf723686 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4070f48a528b39fa1598ba6913dd8e46d37ef80af455d512180043edaf723686
Size

231KB
MD5

a3756f271c815ca708cc8576182fac70
SHA1

e3a45bce580590daf9ddb570ac277756378a2e1f
SHA256

4070f48a528b39fa1598ba6913dd8e46d37ef80af455d512180043edaf723686
SHA512

b1da67e16ee02d27e18ef4446750ff49584341261c768ec6f8af896c7dbe799095402f92f3b26312671ab8c5639e194380d54a904b523a0c361d7724903c0a1f
SSDEEP

6144:d+v4HKlvP7nB0k7FqccxzTUMfwKVhki0fBJPA:d+ga3TiwTcxzTUMfwGkiAPA

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

4070f48a528b39fa1598ba6913dd8e46d37ef80af455d512180043edaf723686
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 216KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.heb
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE