8ea0272120268a570c2a4ddbaa109ac546443b5164f4323537320d53be918042 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ea0272120268a570c2a4ddbaa109ac546443b5164f4323537320d53be918042
Size

3.4MB
MD5

0df241d21064d838fb0239948fb121dd
SHA1

1eca63e1389d298fd9a7ff4b9fe10192b79272e6
SHA256

8ea0272120268a570c2a4ddbaa109ac546443b5164f4323537320d53be918042
SHA512

cd6cdd686e8bd27d225a9a1f7dbc11d13aae386c0c41a9e98e81b0b87b2b3a548b49e63dd429129c2392a7ae98c62a3a79d8682b9daffcebe3a4480398d255a8
SSDEEP

98304:cTu5HMvw5LCe9YqjQ2kvV3zwjCeB0RbAZwNt2:VMvxeq4Q2kvV38jCt8mL

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

8ea0272120268a570c2a4ddbaa109ac546443b5164f4323537320d53be918042
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 3.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 344KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xctns
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE