ac9ac8f9e2eda1e30b8d813f430dad32 | Triage

Sharing

General

Target

ac9ac8f9e2eda1e30b8d813f430dad32
Size

197KB
MD5

ac9ac8f9e2eda1e30b8d813f430dad32
SHA1

6209f2500b81ccce7108ec2bd007ed6a1e4b1ee1
SHA256

1c34040c8f87aaa0bf493e2f8698f77ea57eaca1724c3f4cd0adda9a949fba10
SHA512

4c1aafc1fc1b5d4e36a030a07ce4e2434959a911074cdc31a7a84e87abd6defc85513fc1e15ff33d627fad5407c90eea011eded4f6af6d35229d6ecac6fc049e
SSDEEP

3072:LpjjRM1SwnjifMXsJqAOCjCVu/Rua+7bYZX2/h/euqBhEgxLJ:LpjGmf3AmCVSuvKaeFogj

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac9ac8f9e2eda1e30b8d813f430dad32

Files

ac9ac8f9e2eda1e30b8d813f430dad32
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE