85e53c9c26bcc05da7cf8394c466d497e99cff63a05477df5bff72727b618d7f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85e53c9c26bcc05da7cf8394c466d497e99cff63a05477df5bff72727b618d7f
Size

161KB
MD5

4cae12e02c23dc42dea71a6dbe91c7e9
SHA1

0957f3ee64fe8bef6ca11848879028eb13ca24e2
SHA256

85e53c9c26bcc05da7cf8394c466d497e99cff63a05477df5bff72727b618d7f
SHA512

2a74032f49baa2b06673bad9681d04d3f81ccb4a6304d588c9b726f5d076b147c5c131ca3c9b8cd628e802adcaa4824bff3c60cfa50639f11ea6cde4f7c93d14
SSDEEP

3072:Y4i3sWtHfAUXBwScuktI7zHX3OdEBV2YpVkupr:Y4CRtHfAUXBwSYmedEBVvpJpr

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

85e53c9c26bcc05da7cf8394c466d497e99cff63a05477df5bff72727b618d7f
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 216KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 124KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hkzndho
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE