97d7c06ad7ab6653b234f54f20cb99885e65b5dd1238c4fe4fb77a265bded125 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

97d7c06ad7ab6653b234f54f20cb99885e65b5dd1238c4fe4fb77a265bded125
Size

111KB
MD5

402d585f9bcab5c7b252824c72f315b0
SHA1

02db258573fcb82be237591cdd2db1d05289e574
SHA256

97d7c06ad7ab6653b234f54f20cb99885e65b5dd1238c4fe4fb77a265bded125
SHA512

ed39db5930cc605b1d35449612224d9ae475ddfd80eda42d65b01f0847fcdf1271fb8f029b745fdd56f72bdade3b6931038fda590457025ad00d517919ca313a
SSDEEP

3072:TROzoTq0+RO7IwnYygmw0bsBEwHgAOQybRTc7yQJ:1kdNwBqmV2Hkzh8yQJ

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

97d7c06ad7ab6653b234f54f20cb99885e65b5dd1238c4fe4fb77a265bded125
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 120KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 52KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE