86725654c9fb74f232abc3fc976babd1db6147b395087cf9a8ecfd16b1ce65aa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86725654c9fb74f232abc3fc976babd1db6147b395087cf9a8ecfd16b1ce65aa
Size

3.8MB
MD5

b2f4dd10de067b41cf4c8c8f0d74040a
SHA1

34969876f924e416cc3954178afbe6f469606f8a
SHA256

86725654c9fb74f232abc3fc976babd1db6147b395087cf9a8ecfd16b1ce65aa
SHA512

a922faae0e43bafad5bdbc859b7ad0c71d4a8306ec520bad4411ab8cf3ce2737b86566dc163fe686918a442a6c2d2603810cf035af755e258dc1e04beccb7753
SSDEEP

49152:isx+iboly1VBP1g/r5viN0C24DJtG/XPwh11sXIAyT9tN93TrZN:isxboYf9u5viN0CRGfPs1sByTb

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86725654c9fb74f232abc3fc976babd1db6147b395087cf9a8ecfd16b1ce65aa

Files

86725654c9fb74f232abc3fc976babd1db6147b395087cf9a8ecfd16b1ce65aa
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 428KB - Virtual size: 428KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 828KB - Virtual size: 828KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE