881a26123aab17313f0a810f728c8c048d4eb09fde429ae4823f3243445ea7c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

881a26123aab17313f0a810f728c8c048d4eb09fde429ae4823f3243445ea7c8
Size

148KB
MD5

73cd5d383e46081c40ea34319d70fc5a
SHA1

f662121a62daf2c5119b1841e9d64b57f72999da
SHA256

881a26123aab17313f0a810f728c8c048d4eb09fde429ae4823f3243445ea7c8
SHA512

81c496a15f1f3bfdf3d708ecce862d0a93aaeef9f3154b9c56c1d98e3fe201cb83e9285a1f2bc85e92affef61ca2c0a27b274c159da1c0a7fc07a6db942ec945
SSDEEP

1536:B4PJHjKMDxWMSfkUD41Zw+3Zn/aJyRJ8:B4PJDKKSMUqZv31S4Rq

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

881a26123aab17313f0a810f728c8c048d4eb09fde429ae4823f3243445ea7c8
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE