36106f833d6567733e452f5e9914fc3839b076871c40319e1b7501bb8bb45093 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36106f833d6567733e452f5e9914fc3839b076871c40319e1b7501bb8bb45093
Size

12KB
MD5

258dd791d3fe86c7b79b44ccbeff7330
SHA1

2737af99f478c6c324cd1538b4cc0ea9bb381ab8
SHA256

36106f833d6567733e452f5e9914fc3839b076871c40319e1b7501bb8bb45093
SHA512

d6af24ac7a858a50a8309a46e340ec4c49e03bd137b438460949ceb1590a85c7575dd8950e2374e815e5d5e32f2d5bd139608b11891e21bb0ba3c545327c0bfa
SSDEEP

192:x6mdDfee4G2dl6J89Yz3TtK/+/V7lllWKsGX7tMEYGJOxTx3WqgqE3y5n:EaDGDB6JfzTtK/C7pWKsEX2TtW3+n

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

36106f833d6567733e452f5e9914fc3839b076871c40319e1b7501bb8bb45093
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ