190241cbdcc0666556915304e557343dcb904aa239910ea863a688cc4956aa33 | Triage

Sharing

General

Target

190241cbdcc0666556915304e557343dcb904aa239910ea863a688cc4956aa33
Size

616KB
MD5

0a2b10665993135d9104a6f32cce1b8b
SHA1

2a8541d9959ef681e7b74c80fefe05533999b268
SHA256

190241cbdcc0666556915304e557343dcb904aa239910ea863a688cc4956aa33
SHA512

d5a926b937503d430b4520a5233e7b549c371ca3813ce8fa0edc9d2c75cd973edddfec1eb05865382ec19279b346529186995fff40dd6ad4b7f0dd6e116a03f2
SSDEEP

12288:gPheDTQofZ1ILX8Nm4+kTWQCLRVCvZ6fMjyAWLLXqs76ve7I+L:GkT/kYNTgCvZmMjyAWfR76v9

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

190241cbdcc0666556915304e557343dcb904aa239910ea863a688cc4956aa33
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 648KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 312KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 246KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE