653946402644627540b14487012413bf882969f7cd3325fde0e9d8e02f91341d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

653946402644627540b14487012413bf882969f7cd3325fde0e9d8e02f91341d
Size

87KB
MD5

9a9ba84ca830c06d490198b52653544d
SHA1

8f58044c6c601d641e5d10c7645f179994daa299
SHA256

653946402644627540b14487012413bf882969f7cd3325fde0e9d8e02f91341d
SHA512

392eb7389c508c166a43868a7284b5f2b03975f6ec0b2267246c934b2cf9c9630a9e8a0d50862e5de22ca5961db8f474e8ff2174b9155e158e8058d07be35713
SSDEEP

1536:XdLtJ0S0vJp7SBWnhNIWQKlgLD87fUXYnT+qgprnl6OezV+7LCjkfDy+w:XdLteS0BFxnXIWhCQSLPe4akfDa

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

653946402644627540b14487012413bf882969f7cd3325fde0e9d8e02f91341d
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 440KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 83KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shield
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE