554e2e5f8ef1cdad8a4e96d3e6fa2ba0bc82d7be1338e742d8351f13ca8399a8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

554e2e5f8ef1cdad8a4e96d3e6fa2ba0bc82d7be1338e742d8351f13ca8399a8
Size

10KB
MD5

17ccda0997724eb7bb19ab466a7a58c0
SHA1

762614fbc087f6dd78641199194f589537fa0163
SHA256

554e2e5f8ef1cdad8a4e96d3e6fa2ba0bc82d7be1338e742d8351f13ca8399a8
SHA512

e36838d0b68f0454671c4c290e48e535d25f5b06d6a1b142b887f3598718a96c37f9ad2f3e21d86b7c25388732d3f63d92d71d00e0ea1497f65ab4ba797561fa
SSDEEP

192:COw8pi8s9VMFsUZ1qi8btbnuKgV6JJmLCaqfMQq:rQOF5Z1LSVBgV6nQq0Qq

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

554e2e5f8ef1cdad8a4e96d3e6fa2ba0bc82d7be1338e742d8351f13ca8399a8
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE