92e1127e66fc709270ad200030a1c61c7bffd63fe2a1ee97177ab9775dff4936 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

92e1127e66fc709270ad200030a1c61c7bffd63fe2a1ee97177ab9775dff4936
Size

9KB
MD5

ff284db60d94bb6fe279679239a8b10c
SHA1

0b221d9a0078dce6607c4e76beb73ee09d039aed
SHA256

92e1127e66fc709270ad200030a1c61c7bffd63fe2a1ee97177ab9775dff4936
SHA512

db8a8116ac353d77c72959720bab8b4e62e0992840cc54d13535d5d5b489e22451204fb9d40c04e270f3d3e892b928bbe06ac75aeba90f07394be52196e1db07
SSDEEP

192:LiiUBq4Vkvp08KpAGDSkL1ITrPx4CIqNtr2Yk2RY:eiU/kv2pAMr1ITr59FNtrrk2RY

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

92e1127e66fc709270ad200030a1c61c7bffd63fe2a1ee97177ab9775dff4936
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 164KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ