030a9a86c098b7634a8d2b2be8919cc3ff14cf251955b2478ccb76e09ca43383 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

030a9a86c098b7634a8d2b2be8919cc3ff14cf251955b2478ccb76e09ca43383
Size

63KB
MD5

7ea1280fc52519cf547a1402032cb37c
SHA1

de45bf8983009f827fa1a68b7cede55f0c7e1e78
SHA256

030a9a86c098b7634a8d2b2be8919cc3ff14cf251955b2478ccb76e09ca43383
SHA512

31465851799f2534a935950c58516e440304146a177a49f2818d99c922a1ece9d885e03c83f6959e27dc6bd2a5aa37fc7199e6fca48043de236c0ddc6aca987b
SSDEEP

1536:v+8oHDAbgO0gw/Z0HPAas5vG+dGvHlwg293ncBYsry4:vIUb3W0HYa72EwEBdt

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

030a9a86c098b7634a8d2b2be8919cc3ff14cf251955b2478ccb76e09ca43383
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ