46265ee8013d7659cbdb6f59b6cc003b8229daac5e0d6018d4802cd1e74c851d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46265ee8013d7659cbdb6f59b6cc003b8229daac5e0d6018d4802cd1e74c851d
Size

19KB
MD5

3b39c900d75a0c8ef5f1ffde40a845e3
SHA1

46af01e15c3b648175ab89cf765d5482f3600348
SHA256

46265ee8013d7659cbdb6f59b6cc003b8229daac5e0d6018d4802cd1e74c851d
SHA512

5ce6e3bd768a155b087c3bc9cc20772bb9b5946987873c5909c85e2b64b1ced4182a9822676c87a07c8a9aa1ce801495d3dd9a3fa7e6ec5464d827395c291d55
SSDEEP

384:d+2droL1yc57go/3SNCH0ohrtxUJVYOIWDr:CF57xvk96rtxUJ1

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

46265ee8013d7659cbdb6f59b6cc003b8229daac5e0d6018d4802cd1e74c851d
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 655B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ifc
Size: 9KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE