9252d30ab0cb5620e7312acce34680cc5eb4b24584b30f69f34ab751b398b0dc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9252d30ab0cb5620e7312acce34680cc5eb4b24584b30f69f34ab751b398b0dc
Size

298KB
MD5

7118a5a3104dc5bfc614d9007dac7c0e
SHA1

781ece2fe830cc404630ad1e30ac17c3e7686b4d
SHA256

9252d30ab0cb5620e7312acce34680cc5eb4b24584b30f69f34ab751b398b0dc
SHA512

d12265040df2025d905c14a4ade59d45d4d6124106bab5e6c3b55b6d2b38728d929736769f9c2da1d0962a1272932732990515cbd4741cb55aba720d12ae817a
SSDEEP

3072:uKskeyuGD3y7TtrWxCkvJzIVMFU9HBKIYqeW2d2HxajV/UsxOAnnXLew4kvZn0H6:H0yH3C1W9kVG+/ZeWnxaJOgnZA

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

9252d30ab0cb5620e7312acce34680cc5eb4b24584b30f69f34ab751b398b0dc
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 196KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 206KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ