87b7b9d610c3d176434bba5c9cfed590 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87b7b9d610c3d176434bba5c9cfed590
Size

486KB
MD5

87b7b9d610c3d176434bba5c9cfed590
SHA1

c48c1c09659cde2eecba4b855b996e4e7c0c90e1
SHA256

3229355370a52664fdea3682fc4b7d585b3a59873f8fbb7cdddd896644a90155
SHA512

e3db05afec670bee572cb5a41baf08f9fc20dcbedf1089e1a8ec94bbddcac09baba78bbb9fbfbcb0d8193950730687482630d0a3639a172f3382f6a5dc8c2b94
SSDEEP

12288:bNIQAPGsAqY9IMVYd38sJdpQHlUlY8KfTFoSAS:8PGSY91VwNJcFCqTR

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87b7b9d610c3d176434bba5c9cfed590

Files

87b7b9d610c3d176434bba5c9cfed590
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 195KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TEv20
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE