5919802898a1457fc14b07c0161f67ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5919802898a1457fc14b07c0161f67ef
Size

13KB
MD5

5919802898a1457fc14b07c0161f67ef
SHA1

aeb530abd8a40f0225a58cf05f8ccfb33fd57d88
SHA256

c5f0c123f95f5b8c28ccbe1fd785fe89c13129482b23865fad68917639e53adc
SHA512

51e9b9bd666c6f43c77b695f45b2e2496cbf72747e3d5336a9e922ac1c0eb6657a215788a8bc29facf25ef40ad7a178d2f553c9e14c53f57fafbe010de8e48be
SSDEEP

384:jBtNsRNuOEVQK8Lyy/l8Mr9Sof9mkEEObW:lsRNLHK8ey/PcokED

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5919802898a1457fc14b07c0161f67ef

Files

5919802898a1457fc14b07c0161f67ef
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yC
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE