bf86f82fddfba114c69c005b7a43f8f0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf86f82fddfba114c69c005b7a43f8f0
Size

116KB
MD5

bf86f82fddfba114c69c005b7a43f8f0
SHA1

7a20f363903ac12992416a760815e1911d4ee633
SHA256

774cd778d92c0ac3c350b8ed7836638e5168fb9e112b4f327702531b3efd6b8e
SHA512

5287d94030e0030fe550aaaf0a31c699dd03b9b8ef91044b2d97c8f4ed8382b10caa52f184e20e7c4147c7127b638bc77d789185f6cd0d20941594b9cc937839
SSDEEP

3072:84VO+hM7AGJ1VAbJ+Km8ioJfi2ONKcWW6:rOiM7A61Wm8faujt

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf86f82fddfba114c69c005b7a43f8f0

Files

bf86f82fddfba114c69c005b7a43f8f0
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 208KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 105KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nah
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE