8e2328c7de8439142be0d751c321f230ea35fa5e606fef39b9ec278f6d487128 | Triage

Sharing

General

Target

8e2328c7de8439142be0d751c321f230ea35fa5e606fef39b9ec278f6d487128
Size

88KB
MD5

cadfbf69556372dd5955b726bc7156e8
SHA1

0c86518a9e136fc2acb2dfd83c72b4665175bf4e
SHA256

8e2328c7de8439142be0d751c321f230ea35fa5e606fef39b9ec278f6d487128
SHA512

ec7912feb41ace1b2a1debc72d6c7c471cc1c3aa61235a47e6af447e6ca273ac8bb287b99235c9ef5876dc89337b2b959ac32c50c6ae54ab2350f69394518454
SSDEEP

1536:VKXOP17PerAY+ARDBLk/F89ijzRu5h4EtTBp5Hp1ZSOYc85sY0X0pblu2:VKXOPhPpNARFgN0cu5h4EtNp5HQOYZ1Y

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
upx

Processes:

resource yara_rule

sample upx

Files

8e2328c7de8439142be0d751c321f230ea35fa5e606fef39b9ec278f6d487128
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

_kailleraChatSend@4
_kailleraEndGame@0
_kailleraGetVersion@4
_kailleraInit@0
_kailleraModifyPlayValues@8
_kailleraSelectServerDialog@4
_kailleraSetInfos@4
_kailleraShutdown@0

Sections

UPX0
Size: - Virtual size: 56KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE