089a3d48d45641b25643a193d0673deb03abedc91dec3c4313542951e86dce14 | Triage

Sharing

General

Target

089a3d48d45641b25643a193d0673deb03abedc91dec3c4313542951e86dce14
Size

530KB
MD5

ce5d386ac732a167187c9c5a926f3f97
SHA1

36c7690a31f633911878e28a07ae03d7a5856c52
SHA256

089a3d48d45641b25643a193d0673deb03abedc91dec3c4313542951e86dce14
SHA512

9fdcc536c8f8860ffa2ec95d2a53d6d6afa7fb52488e7fdfa82d08ed3a90876974b30af68a60f725839947c749654265261aa6e22db2c3da73406ceecbe396e1
SSDEEP

12288:cUG4XCWk9RfzNJFOXuOjxQVF6yM0wgoqd0PhZ+:lFlWTlM0wjA0PhZ+

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

089a3d48d45641b25643a193d0673deb03abedc91dec3c4313542951e86dce14
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 503KB - Virtual size: 504KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aeolpbv
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE