514585ce74830ddf52d7f4b622f1202d182fc18a350fe059324bb09dee8bf7e0 | Triage

Sharing

General

Target

514585ce74830ddf52d7f4b622f1202d182fc18a350fe059324bb09dee8bf7e0
Size

121KB
MD5

6d058a91f64192534e93c30db199b1a0
SHA1

6ca03ea65e8850592f297c9a79956eea2c8b8387
SHA256

514585ce74830ddf52d7f4b622f1202d182fc18a350fe059324bb09dee8bf7e0
SHA512

5eb55bf6c4655fbdad2548b243de629b144a93785b892ca87649c6b8161268b9c78741de737f529e9ba0177cc27c8ee9e6c763236281574e4d8231024f35a9e6
SSDEEP

3072:8MpDO2uxroFJx2zvwe3KEAnwzDMyfowU4Xe4BBVW:ppDSiJxqv73KEFQAoFqe8DW

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

514585ce74830ddf52d7f4b622f1202d182fc18a350fe059324bb09dee8bf7e0
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

DllCanUnloadNow
DllGetClassObject
go
setvm

Sections

UPX0
Size: - Virtual size: 152KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 110KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nF�^
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ