7226e99515ac92607d044ea2ab5c7cfb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7226e99515ac92607d044ea2ab5c7cfb
Size

256KB
MD5

7226e99515ac92607d044ea2ab5c7cfb
SHA1

f621d0ae64c11939c51881b91963ef43516bcfac
SHA256

aeb4e0ef953db729f9188813d08e47a01bf3c1dc02b9678137e809efb2bc6744
SHA512

7036a217d762288234c425a16d163a06ef617f5b1f48cb608dca2c8ba5b02a2d041f1e2bcea206dadc52b8aa399c33c22dcff2046109f14f0cdf5feaedfcccca
SSDEEP

6144:So43fo6JYjyDOld5FMr+rrQgK8JR43x9zJj7yZz60xz:Sn3foeYU6Mr+/Qghy33ZysG

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7226e99515ac92607d044ea2ab5c7cfb

Files

7226e99515ac92607d044ea2ab5c7cfb
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 256KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 125KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kbeqj6e1
Size: 128KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2mabuudq
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ