830cad8127bb51170ecb0f3f2449aedba7450283fa5b17b6a58ddd28d48e67cb | Triage

Sharing

General

Target

830cad8127bb51170ecb0f3f2449aedba7450283fa5b17b6a58ddd28d48e67cb
Size

87KB
MD5

65895641dc7528e832f9c5ebb679bd30
SHA1

ba95b3b87deca4327c9ef96896a27adb511d3a45
SHA256

830cad8127bb51170ecb0f3f2449aedba7450283fa5b17b6a58ddd28d48e67cb
SHA512

9e1402c613941f9e7177efcb0342167d7eac7a0b51f990f73eb85cf74e8d2923a6dad597b269865cee43f87b20a86fad5d7a9060f379f2aacf0e97f98b0f59c3
SSDEEP

1536:Am5a+Y31jtJfTRELHDbj9vfXoviBkCLJhic/u6lgc8XLoD2lw1k4Yk4:A5+Y3zDkjXiGkqBuTlXED2Ykrk

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

830cad8127bb51170ecb0f3f2449aedba7450283fa5b17b6a58ddd28d48e67cb
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 148KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pebundle
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pebundle
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE