1df3767ed1fc20edfdfc7abbaee60c4283b937d3390dd7653ac7b4db02780f27 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1df3767ed1fc20edfdfc7abbaee60c4283b937d3390dd7653ac7b4db02780f27
Size

93KB
MD5

1603662e6daec5f685b262d47ae778b0
SHA1

ac40928ea0b3a50086c50facfa964b26869b68aa
SHA256

1df3767ed1fc20edfdfc7abbaee60c4283b937d3390dd7653ac7b4db02780f27
SHA512

9e2569b29dd6e6c47cda3893dae61fda96e8e0a9cf34e442caa9ae4d392b2d3bb1b329bd830aca967212563c14f60c6dbd27e27f56d439b9282e8a176370dc70
SSDEEP

1536:Z/o2g2kgThSS+EHeCEE2t20giS4pN9WmCNWEAZpungOzp+edWTgLrpp:Z/ovY+CEE2CinsNWqngwUY

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

1df3767ed1fc20edfdfc7abbaee60c4283b937d3390dd7653ac7b4db02780f27
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.UPX
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE