f02f0dada91ab53f17fedc3bc33d8db909db6c8ec97e37df757597ebd1811873 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f02f0dada91ab53f17fedc3bc33d8db909db6c8ec97e37df757597ebd1811873
Size

216KB
MD5

9ec7185ce5eaa3878c279a5e1a03f526
SHA1

6dee9f839c9f72d60a3c77c72062565ff7ef0258
SHA256

f02f0dada91ab53f17fedc3bc33d8db909db6c8ec97e37df757597ebd1811873
SHA512

afd97ea171c9603f12d613003680f9c7c05b825e008617b82bbaa248f953121c0a52a132e33ea843a3ba9aff8e7a7e8912c205839eece3e695d9a73a7551a39e
SSDEEP

3072:CfHlF1r1ImerIDo4WQ4VhsV4HEMN9jlINVk:d4WsykE

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

f02f0dada91ab53f17fedc3bc33d8db909db6c8ec97e37df757597ebd1811873
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newIID
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE