26d42350561111dd3be85aad41b4f17cf17773831a2508633ad5ed5baed2bdbd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26d42350561111dd3be85aad41b4f17cf17773831a2508633ad5ed5baed2bdbd
Size

220KB
MD5

13f7124b4e853a5572d630ae67c57090
SHA1

3fdc48c8d11589383402817a038cae7851fc1d1b
SHA256

26d42350561111dd3be85aad41b4f17cf17773831a2508633ad5ed5baed2bdbd
SHA512

cde82855818c5575af4084a4b8e1c0492631f58bfa1e8d9f3f180ad405388b4814a1d1f37bbdb66c8a049ad268fd155a8c38270d86177a29b9abb9627148c089
SSDEEP

6144:8roBOe76HEjNn+5/7SXKNV3iyZy6pAp+0dTmQl:8sBDRjN+J7SaNVy+ymP4V

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

26d42350561111dd3be85aad41b4f17cf17773831a2508633ad5ed5baed2bdbd
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 216KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 126KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

P^B
Size: 86KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE