910f0cd31beec8c9d1fcd2f1432b05de4d28f685eaf19d1163580dbb8270f796 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

910f0cd31beec8c9d1fcd2f1432b05de4d28f685eaf19d1163580dbb8270f796
Size

514KB
MD5

3415e4fcf435758db1e8d8bfb05cbd0c
SHA1

415aff1e69b95db55e974f6e7fb6d97623028895
SHA256

910f0cd31beec8c9d1fcd2f1432b05de4d28f685eaf19d1163580dbb8270f796
SHA512

978804671ce22b1e90f71c20d55f6be66947e577b0b80979b31992e075ef5b6ed84d1e000ebe6d63b587e20304d02fa3fa13e8ef95deefffb65f6fa3a8fe00ff
SSDEEP

12288:p2glUjkEiYPzLssLEDUu+5BRHNBDLqw54IxStAj9nVRkBQqk:0EXEF3u+RtBf35gCj9nVRIbk

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

910f0cd31beec8c9d1fcd2f1432b05de4d28f685eaf19d1163580dbb8270f796
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 504KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 497KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 672KB - Virtual size: 669KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ