1797c34aceefbbd2445aad76e2ebf4c11df53cb76934cbbd977c1ce86ac299b0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1797c34aceefbbd2445aad76e2ebf4c11df53cb76934cbbd977c1ce86ac299b0
Size

947KB
MD5

149f072d1472dd2ea50acb375789d280
SHA1

9740e3dffb8b0b41b2e60248d1ba0666a0fa9078
SHA256

1797c34aceefbbd2445aad76e2ebf4c11df53cb76934cbbd977c1ce86ac299b0
SHA512

d932dc770ad9f45b7a26ae9f75fee1eaa7a2c541dce2385728fdf4938fd2ca59ffe3683daa70a31ab7773117e64740969fee39207e59685b5153a9c558868629
SSDEEP

12288:jt0VPFfsKAkrbPlXhHANUTNq+TmHANUTNrHANUTNx:SFksb1Ax

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

1797c34aceefbbd2445aad76e2ebf4c11df53cb76934cbbd977c1ce86ac299b0
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 796KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 153KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rol
Size: - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE