927c2fe400261e378c416f1ead07a8265467c08f11e1bd7f59083fa466f5dc18 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

927c2fe400261e378c416f1ead07a8265467c08f11e1bd7f59083fa466f5dc18
Size

38KB
MD5

77754a0e95d180dae01e5b53362b5320
SHA1

9093477be3d7e7a3da9fedb83112d08507fdd70e
SHA256

927c2fe400261e378c416f1ead07a8265467c08f11e1bd7f59083fa466f5dc18
SHA512

f51698823647217e6e260b6f6d3bec8259fecdf7aaadac2dd775963afde28ea2b40a6e05674846d95f1860509251b93f85de604b76dd45d775ec7051610bb1ec
SSDEEP

192:nIHuq1hw79Njm0ls/7KxAMQ3Cj78uvejFf4FZMR/YxvnA:IOIc9Fm0W/sAMK078bvR

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

927c2fe400261e378c416f1ead07a8265467c08f11e1bd7f59083fa466f5dc18
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crkE
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE