93502a39d700d397789e6de5608067450cc20465c2e7b044fd13b8756f902dd9 | Triage

Sharing

General

Target

93502a39d700d397789e6de5608067450cc20465c2e7b044fd13b8756f902dd9
Size

263KB
MD5

fd21d670a889dfdfb7293677a7b6e1c1
SHA1

e2960b037347c183dcfc54abfbf8a6b2cb7d9913
SHA256

93502a39d700d397789e6de5608067450cc20465c2e7b044fd13b8756f902dd9
SHA512

d0c0838d59574d3e1bb56171f8669a40f511e935ca54af822eff126ef0fc7e1f4060a5169e1c2ccc53f8d60f41b7993b5808004e66aed32e866e9655fd57023b
SSDEEP

6144:24IvpRGECU3AgACorjJX+jSKSjPLAZ0BOH30fjKyosJ2:vIxRGxWborFua0Ce

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

93502a39d700d397789e6de5608067450cc20465c2e7b044fd13b8756f902dd9
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 428KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 231KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Vz
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE