c9084af5b57c9aa79bacf66d44eceab2ab9e01410eeb28b8cf48abee99918b0b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c9084af5b57c9aa79bacf66d44eceab2ab9e01410eeb28b8cf48abee99918b0b
Size

589KB
MD5

95005578c0a7548fc8c60d5c077d99b5
SHA1

75e9a3f464dce505f3ba22c1751f222f78304dff
SHA256

c9084af5b57c9aa79bacf66d44eceab2ab9e01410eeb28b8cf48abee99918b0b
SHA512

fe03ef4d8aa9ac51f490b94e83eedd35a819085857a7999e96f2e9b1e23aa6511b471470810a301184619349e7e285a7daa7aad64a3d358910abe5df4f6cf720
SSDEEP

12288:3y02rJTFJKC6+uitt8Aie6aHt45MVAzro5EdlyjUaj0yGZ:T6KCJHtt89efvmMEdW

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

c9084af5b57c9aa79bacf66d44eceab2ab9e01410eeb28b8cf48abee99918b0b
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 588KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 563KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 592KB - Virtual size: 588KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 448KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ