b53331a23a4637d76d30868e649c13c10bf7b5fb1e5a5210daefd2dfc109a7eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b53331a23a4637d76d30868e649c13c10bf7b5fb1e5a5210daefd2dfc109a7eb
Size

338KB
MD5

1c47cce07200f7dbbc11572d6c1d4401
SHA1

51d483c874792d7d4a122f11ceb0370e8a6f2379
SHA256

b53331a23a4637d76d30868e649c13c10bf7b5fb1e5a5210daefd2dfc109a7eb
SHA512

52ff539bf40d375cff625aa75d1bb66dfd29346829a1add1f0fd0eb518d433ca1c3ab3ce773bb8778db2b53f46d90c020e9b1433b52ad647b21c14482fc1e0ab
SSDEEP

6144:btSEf+oSabdqLcDXZYQyW+t78xVxqhqpd87paKeab5jgdx4e+W:btSHoSWMLKOXttQVxPy7paKzbOhF

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

b53331a23a4637d76d30868e649c13c10bf7b5fb1e5a5210daefd2dfc109a7eb
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qcyrwal
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE