dc1910b4621d706c4e8a5563757318468fdcc6b4d21bd1983a282d11aba60a0b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc1910b4621d706c4e8a5563757318468fdcc6b4d21bd1983a282d11aba60a0b
Size

54KB
MD5

054c759b5b1d0101893bdaf23ffc137b
SHA1

1d41764302bde047666fe8872f2a6d47856109fb
SHA256

dc1910b4621d706c4e8a5563757318468fdcc6b4d21bd1983a282d11aba60a0b
SHA512

367d8f2abab7dc92957c3ba7e2ebbd6cad4969e662ea4c05572c91e11c1d294622cf4af2ee96291177037cc89385ae9d4fbd25dc09db68e97c2413eab64c49ae
SSDEEP

1536:S9nnJCMbBqrenYSYJI7YfBoekMmzlLzhV6:S9erkY1JiRRvhA

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

dc1910b4621d706c4e8a5563757318468fdcc6b4d21bd1983a282d11aba60a0b
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 148KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ