9258b8f799d2988e75342d9f0a502ec63e26a2337c9a45c48758e50e73d94844 | Triage

Sharing

General

Target

9258b8f799d2988e75342d9f0a502ec63e26a2337c9a45c48758e50e73d94844
Size

136KB
MD5

18766c9b3ce93a9dc917f77d5a462e8d
SHA1

ca23c7246cc6853805eb39e3b2a1e91a935c5af3
SHA256

9258b8f799d2988e75342d9f0a502ec63e26a2337c9a45c48758e50e73d94844
SHA512

8c0259200fe2361ea8be6968e5a58bebe0998fb5673761ebef2ae464c33376b1cff9a56f8be7764e4c10eee04313e11d7603fe96c851eeb20b937ed3bad27992
SSDEEP

3072:a19CeIjvJPHokX/QNC8s8V+6fmYTBtmbntGlSzgv5qeC9cNlvZO/PbGWAW+QeIpn:5eeJPHJE9xoK

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

9258b8f799d2988e75342d9f0a502ec63e26a2337c9a45c48758e50e73d94844
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE