8fc0d2d0a83f9d332f6183b762a23a3feb2733529443c674c4887277fc5af41c | Triage

Sharing

General

Target

8fc0d2d0a83f9d332f6183b762a23a3feb2733529443c674c4887277fc5af41c
Size

248KB
MD5

4a0cd52c249128971f59be15b99fb04a
SHA1

e5cf634df3cc3cbd04c62a7d3f33739fdafbeb2e
SHA256

8fc0d2d0a83f9d332f6183b762a23a3feb2733529443c674c4887277fc5af41c
SHA512

48e224f1f98a144ce9abb163aaeaf349dc4e17e9a25284455c05bc4c7eac4161fcd4f8c9433b1f9ab2e6f64d23e24347474af13773b4f2c83282a75d99f05bcb
SSDEEP

6144:kiuykoOfMWo4t2+Y62NL5Y7J0Ms44kIELg/SDBHg4SlJwC8qIh1:JpmfU4cNvc7J0Ms44k9hBl858qIj

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

8fc0d2d0a83f9d332f6183b762a23a3feb2733529443c674c4887277fc5af41c
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 204KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 220KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 240KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ