15729ff2094707143c616cc6b93a9e5693844294521a637057f8e738c14c2d76 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15729ff2094707143c616cc6b93a9e5693844294521a637057f8e738c14c2d76
Size

203KB
MD5

8368a217cb8cf583375e66b7252c92d3
SHA1

12f59982265f69b662596b5206b04e85151860dd
SHA256

15729ff2094707143c616cc6b93a9e5693844294521a637057f8e738c14c2d76
SHA512

c726a1a505f0030f4756df578154f81f2b0903130cde076a7e198c56e58c3ad891b4fdf544cc7f286351de053120a052072d566502e640fcb51ca0d4dfd15b63
SSDEEP

1536:YViOjdHa43oMDAJk9vdjf4SsGF9XpdblvvcoW0K3wHAFXKfy:YViOhB3oMUyFjXpHcoW/wHAE

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

15729ff2094707143c616cc6b93a9e5693844294521a637057f8e738c14c2d76
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xknoolr
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uujulqi
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qjlbjge
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE