7c5c2c879e48ab54334bf8112873849a712755a6665b32b459ba5c01895d2833 | Triage

Sharing

General

Target

7c5c2c879e48ab54334bf8112873849a712755a6665b32b459ba5c01895d2833
Size

374KB
MD5

2682e23b8da8814b33f39ef445c6d604
SHA1

e01f9e0fd70bab85a5a9bc324b096faaef939685
SHA256

7c5c2c879e48ab54334bf8112873849a712755a6665b32b459ba5c01895d2833
SHA512

80faf60951dad363900d7f3f2d12ac0923cf52e4fc9e72dc4a658db18db98c5a3d6ddc0d16ca65a068a388c5d7fc9b4bda5f2e3fe64f46cb74a4a9cde321e079
SSDEEP

6144:viQI6y6jdpdIyo3t73T4eVRHgcXo4DwwhA0Qhp9TS1LYHpbJ:vPXFIyM7MkScY4/hA3h3JF

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

7c5c2c879e48ab54334bf8112873849a712755a6665b32b459ba5c01895d2833
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 444KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 372KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 440KB - Virtual size: 436KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 351KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ