f83b92e954a53c1e33e1030702f3f86d4d195dfdef8eebedcc39c01fc3ffc52a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f83b92e954a53c1e33e1030702f3f86d4d195dfdef8eebedcc39c01fc3ffc52a
Size

37KB
MD5

5068de6f2694fcc32798981ea91b3090
SHA1

3138fcb79bb518f528ca586cea89bc04eb8a4b0f
SHA256

f83b92e954a53c1e33e1030702f3f86d4d195dfdef8eebedcc39c01fc3ffc52a
SHA512

2b88ac11dfa9018c8692c1edba41d0f6200c2242924e4a425ec3d90625e66172ea3435a29ff4f314f60c34aa03720b03c158f69376ed1b8e1c4848c18eeb930f
SSDEEP

768:Mjr6InajlFNwRhtdQ4CQS/a1grbSsSDKt19/iUJ7BOwtZmPNiv:MjrtnaJFNwLk6Si14r19/ie7AgMYv

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

f83b92e954a53c1e33e1030702f3f86d4d195dfdef8eebedcc39c01fc3ffc52a
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ