02a94b4e8cf3fd02953803f2850c67e3de19562852bb35c2dc945efcfcc3205a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02a94b4e8cf3fd02953803f2850c67e3de19562852bb35c2dc945efcfcc3205a
Size

616KB
MD5

4f60823abcfd7fe3d32785d0244b4e8b
SHA1

5732bd05177158800c8bcb3c8200a7ce84cca6d4
SHA256

02a94b4e8cf3fd02953803f2850c67e3de19562852bb35c2dc945efcfcc3205a
SHA512

964404e8fc71df93570741746e2560437b467ea908a14c2cdf0a838c6232926a4303366b8ed32e48868874999d50e91bc2b1a682f75509cf49601b3e976d4484
SSDEEP

12288:UlkyIwVkt4FzD5sneTHKMDUkXjJI5isxiP1x1nTO:qa4FBweT/DJ8MP5nTO

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

02a94b4e8cf3fd02953803f2850c67e3de19562852bb35c2dc945efcfcc3205a
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 250KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 153KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wtq
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE