42f685b66c5d7e99fc50efa0f0f73e75 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42f685b66c5d7e99fc50efa0f0f73e75
Size

482KB
MD5

42f685b66c5d7e99fc50efa0f0f73e75
SHA1

c9a8617fad87e64e275540fcdb8548f483448d2e
SHA256

e30815d8f0f4e84559dc441bf48fa49d4ac7c0e0a7d2a36a1ec1b2d47c20b32c
SHA512

fc47c66f083b75232eb6e452bcfb15604c211669f126d41b965829ee67cb25f7d82f23b5e6c6e581ad98a82d3573d2e172e284ebfefa024422a449a246e127c3
SSDEEP

6144:lRSrUuHX7jBQj61e0Jz6H119A1/DXg/SwTZRQOFNZJt0FkJ:nmpL1Qj61e0ASDXg/ScZRNH

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42f685b66c5d7e99fc50efa0f0f73e75

Files

42f685b66c5d7e99fc50efa0f0f73e75
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE