c07f21adee2b7aeb66942e46ed1135022b0a703457fb85d7ec1fd7c312aaf7d6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c07f21adee2b7aeb66942e46ed1135022b0a703457fb85d7ec1fd7c312aaf7d6
Size

201KB
MD5

1e3c78077ea8b6f850763dfe6bc7a257
SHA1

1503f90b696721435dee19e7ad5c3055333e7673
SHA256

c07f21adee2b7aeb66942e46ed1135022b0a703457fb85d7ec1fd7c312aaf7d6
SHA512

b0f500fefac92da727f97cfa0e815d0826317df18039465127dd698f4d3e8a2fab0194f88e82b17fe5966d4af012c5496c1f293f9b5b2e390436a468d6a5cadc
SSDEEP

3072:dk5zkYSd1v4EVMVv1muvuMjDzv7oddKU9Srl0wTzxCDAQ0yXS5sRyw/nHouwdFW:0RM1vlCNd5IX96uwUDAfybRyqIuwd

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

c07f21adee2b7aeb66942e46ed1135022b0a703457fb85d7ec1fd7c312aaf7d6
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 100KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 199KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512B - Virtual size: 374B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ