87ed6da58f7bb40025cde668f557447ff5b8fa7a76c301c55ce0fc9b3d7f9430 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87ed6da58f7bb40025cde668f557447ff5b8fa7a76c301c55ce0fc9b3d7f9430
Size

72KB
MD5

934843c1cd6b6fcadeb8db451b265eff
SHA1

72d3e4152e6e0229910dbe96134b553b7839873d
SHA256

87ed6da58f7bb40025cde668f557447ff5b8fa7a76c301c55ce0fc9b3d7f9430
SHA512

56f9ad61820cc2cc900eac3f7686a953fd198bc3378950374c56bef131a1e4fbaa9f68efb84f061be94f0796321ae95381ae72fcea99f15827a503328621d67b
SSDEEP

1536:3FlsQHE9GUNtPtUeeOYjoHhtB7l9Vj2rVwh5inteJ6SJOR:3FG9NtPCet4WtB7l9VjCOh5SteUSJk

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

87ed6da58f7bb40025cde668f557447ff5b8fa7a76c301c55ce0fc9b3d7f9430
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 64KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ