ed7ed14ef5755380b08b4937f0f4ae2c42223148ec4a3c34a0f74cf47903cd67 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed7ed14ef5755380b08b4937f0f4ae2c42223148ec4a3c34a0f74cf47903cd67
Size

14KB
MD5

3d9a7488c5c8e17f33c44b9229e33bea
SHA1

d305dc31bb1a35bef91aa001ede807fca2e58750
SHA256

ed7ed14ef5755380b08b4937f0f4ae2c42223148ec4a3c34a0f74cf47903cd67
SHA512

b561859d2efb15db86b3557f5dbc97793d7510b9a1f838d66c9e4614114079dc12d62a0a11242b3dfcd0c7ae563c0d4dfc3446eba6ee39368ed568c9cd98bebb
SSDEEP

192:s3CpfP0fx9WlGpnnEvOJeBwj7ZHls7xb3u50QBo2skBhLGz97Z/yP:sypfPixcIpnEvOABwRRWABhi57YP

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

ed7ed14ef5755380b08b4937f0f4ae2c42223148ec4a3c34a0f74cf47903cd67
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ