e6e77a31dc9f37fdac5de6ddb4f100a7ac605cb021c7048400b2425f17e9feb2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e6e77a31dc9f37fdac5de6ddb4f100a7ac605cb021c7048400b2425f17e9feb2
Size

152KB
MD5

5f753e4966eacd096dfd03477ff006c0
SHA1

4989259457316cd6e68229c1c1329980553ad803
SHA256

e6e77a31dc9f37fdac5de6ddb4f100a7ac605cb021c7048400b2425f17e9feb2
SHA512

2b2dae13852be41cc2bb4ac8ec96aa34197b99bca9df175667cd81212c633092e59120c66883807fd1ffe0f1d642bf1bb78cec8639ec42f59386163bb761fb02
SSDEEP

1536:lmi+xxdgF45E4h2Hnq8OFnouy8CBZuCaPIZzXYI:lmi+/dgy5Ef8doutaZraPIZzXYI

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

e6e77a31dc9f37fdac5de6ddb4f100a7ac605cb021c7048400b2425f17e9feb2
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qcyrwal
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zihcvgf
Size: 18KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE