f66cab1a6e84a6b5aa55b7b7776464c7000b01c897b4bdb8e24dad4de606276e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f66cab1a6e84a6b5aa55b7b7776464c7000b01c897b4bdb8e24dad4de606276e
Size

142KB
MD5

349d805635d5ed1e932e3a39cdd7a869
SHA1

69985b946ec09560ce5a04e9b36440deb84e771a
SHA256

f66cab1a6e84a6b5aa55b7b7776464c7000b01c897b4bdb8e24dad4de606276e
SHA512

3ed0d3fe90c6da1f13627c8f284b39f0f6e11f55985a2accc2c0bee780dfd987d4ef289fd9e280ffd3b7d1ae7580f507d1a63998ad62e9e36685b0d05c5db28c
SSDEEP

768:SGz7jYlLYDFcxAoTnfWAkyTOOLTjJRnJAQ66Zr/Lu:jILKAfWARTbLlAT6ZTL

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

f66cab1a6e84a6b5aa55b7b7776464c7000b01c897b4bdb8e24dad4de606276e
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.KUPX1
Size: 76KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE