19204a3659c6a4820a28e332fa9d6df87677e1cfc3f8ea5cb9a3270e7fcce41a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19204a3659c6a4820a28e332fa9d6df87677e1cfc3f8ea5cb9a3270e7fcce41a
Size

462KB
MD5

fe02c4c1781b400875e9e5ba9ea082d4
SHA1

854312099531b52868ff91d4862db26d2c8712f9
SHA256

19204a3659c6a4820a28e332fa9d6df87677e1cfc3f8ea5cb9a3270e7fcce41a
SHA512

df98a826fd235382bbea87416d31522bfac953f12c8f64b63f20baef54c0983e041fe96266fb83dde172175f3d16ec3fba7d305c78697058071a7a70e675156d
SSDEEP

12288:tU4r7iOAC8EjfB4raW7KpyT+Pr5E9BHcDp:tzr9EEj6O+KpywY1c

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

19204a3659c6a4820a28e332fa9d6df87677e1cfc3f8ea5cb9a3270e7fcce41a
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 692KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 398KB - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 576KB - Virtual size: 574KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 184KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ