c3390bfe8a58be7b84498b64ce60faac01183f37804519182c1ea5e40036a4db | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3390bfe8a58be7b84498b64ce60faac01183f37804519182c1ea5e40036a4db
Size

52KB
MD5

a0ade1bc27d4d4fa79574c1a54478211
SHA1

63db718cd269e374c966d6b11a698f421a3a99b3
SHA256

c3390bfe8a58be7b84498b64ce60faac01183f37804519182c1ea5e40036a4db
SHA512

2014891ce0b064e6396f03b48edb201b01abefdf1271ba94535aa9c5d09871f0793e240da65c650d060511d6a12ba91c0d4deb0fddb88999c25585f24b12fb43
SSDEEP

768:OZAZnbBs9Grn+xOBm0fBQhaIAM4xz8JxiEy1OtH/ZQJjXuT6J0xC:OZAZnbBsw60fSha/BF8JxiIHRQdC

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

c3390bfe8a58be7b84498b64ce60faac01183f37804519182c1ea5e40036a4db
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

flndgbd
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE