93d6ca6c11b0e630918bb38ea9c47d5ac690a51a8aee464e49ce989213fc6c3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93d6ca6c11b0e630918bb38ea9c47d5ac690a51a8aee464e49ce989213fc6c3b
Size

248KB
MD5

5673ec69f2f907becb10085bc5921a64
SHA1

ce3022205b24f8a3b00753ed2da2b9ef8a36e45c
SHA256

93d6ca6c11b0e630918bb38ea9c47d5ac690a51a8aee464e49ce989213fc6c3b
SHA512

bda6b72ceaf3cbefcf5d59288bf227c8d559b42c18865081397591e41d95727acac4187814c2a2ae43aefed21a742c2cc968b1ce270a33355b8ae11b94b7bfc5
SSDEEP

3072:7H6gwW46IY2dAlO7nlLRCdu9OjgiYkPXnb9Y3A/KH4i/V2kDz6cCSDMj2p:7ag2PYkOULRCIU8IOAwP/V26xC

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

93d6ca6c11b0e630918bb38ea9c47d5ac690a51a8aee464e49ce989213fc6c3b
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 380KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 178KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 448KB - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ