45c63966e1b3fe737dcf952df0839a3b5f55d8ef5f72211f15b30f9cde35321c | Triage

Sharing

General

Target

45c63966e1b3fe737dcf952df0839a3b5f55d8ef5f72211f15b30f9cde35321c
Size

33KB
MD5

d3aa3ce5454c73718cfea2bafcf15b1e
SHA1

0a1712c8f65a5044d5e95f02913a40e614dcda33
SHA256

45c63966e1b3fe737dcf952df0839a3b5f55d8ef5f72211f15b30f9cde35321c
SHA512

866c98fb4589c1cab8351d6c639beb8d15547f05f2b6620efaad5eaffc226f9c18c64fd6afd954ef7ea08f1b91ade9adabb483301e76df9224a0d0adcedad6a1
SSDEEP

768:9bXIxF9wgv52zGzcA5JUKytvmBB/Kmy+m+nq3T:9jYzwgv0KzcA5JivqiUgT

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

45c63966e1b3fe737dcf952df0839a3b5f55d8ef5f72211f15b30f9cde35321c
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 136KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ