8b08d8a55a794e1d20e940ffa1bf3f2e82edc0fcd6ce3c34f842dc95d7267bdc | Triage

Sharing

General

Target

8b08d8a55a794e1d20e940ffa1bf3f2e82edc0fcd6ce3c34f842dc95d7267bdc
Size

134KB
MD5

5e663023e99f0ff4c29250153040eaee
SHA1

bc2ace3dd8839aa688e23b553b85edbf950fd24f
SHA256

8b08d8a55a794e1d20e940ffa1bf3f2e82edc0fcd6ce3c34f842dc95d7267bdc
SHA512

c2f1f4d5bed53342eee67de7f4a1b02edfcc7bd0cec75fecc3de44d6bba16a3b1b928cdcfb9f4bbd96416ccec7f875f1323fc20018de601acd0c361b9c102197
SSDEEP

3072:leMN1PmLzXQvyP2thrB7zbIQ5N6SNa1fcGm0mZ70mdukc0H:l/N1PGjPPOrBvbIQKSNoUGm0ST

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

8b08d8a55a794e1d20e940ffa1bf3f2e82edc0fcd6ce3c34f842dc95d7267bdc
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 5.3MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 131KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ