26817d7589d3defb38c688c7563ef2f7 | Triage

Sharing

General

Target

26817d7589d3defb38c688c7563ef2f7
Size

579KB
MD5

26817d7589d3defb38c688c7563ef2f7
SHA1

674d004d15dc9d226922a604e73bf183ee39083d
SHA256

e702bf40726c1dd1721fad989755c5787f1eee44ac07175956db2ee48290c1e7
SHA512

8bcf766de5fa174de37d084ce19758c1da3b3c8dc8fa9c0c2df8637081b16bc36f1d52b675dc56e824089b288c942b08a30e56ae1aa211716a26c087f125d21f
SSDEEP

12288:zTldzg9X5XsjPefG8Bzjf0PpaimPER7wo:zPT0lBzwcimsxwo

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26817d7589d3defb38c688c7563ef2f7

Files

26817d7589d3defb38c688c7563ef2f7
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 567KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 50B - Virtual size: 50B

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ