94721cdef84cc5c240f90c0029be23c2a3fcb6708e5ed4a2253aac9a381bb3f4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

94721cdef84cc5c240f90c0029be23c2a3fcb6708e5ed4a2253aac9a381bb3f4
Size

1000KB
MD5

5f09334ed839f3b5700fada3b1f7862a
SHA1

3f4b12d202fda74fa00bcba661e214ca923e22d1
SHA256

94721cdef84cc5c240f90c0029be23c2a3fcb6708e5ed4a2253aac9a381bb3f4
SHA512

90b94500121af86c3993a895dd87f0d9902cfca4323a19c0fd62b194508979fe36c80243c14ab09b27cf01db30e462c433c4838e0bd245804a542acc7c982785
SSDEEP

24576:obLNvOCkpuPJQ4RSbaJbBJemIhJ9mr7FT5hl/lWvL8bNgyxGS7:oGCNi4RSaJemBJWobb0I

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

94721cdef84cc5c240f90c0029be23c2a3fcb6708e5ed4a2253aac9a381bb3f4
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 2.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 941KB - Virtual size: 944KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yvs
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE