ca19f2e7c28dfa7c86f15e2d77fada70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca19f2e7c28dfa7c86f15e2d77fada70
Size

249KB
MD5

ca19f2e7c28dfa7c86f15e2d77fada70
SHA1

068ba949c9b172944dbbaa8fa45dc0b82e4583cc
SHA256

7127179c685eb06ea0114fe732e6ab1c4861f0321c4ddcace558fdaf09f6bb6f
SHA512

c3855a2866449bfef5db6a0896772ec44cf499e82b28354129d956fe90e38d09cce43298b474e0ac20efa1f6ed75c698bd88e00837df34af2b7caabae91e4a5c
SSDEEP

6144:fBacNNrsKHKkyo7cHPIZ6vfWnKIhParq/yu08IhiplpcqSbU:AcNNYwKx0cnEBBaWyG2ivpcqSA

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ca19f2e7c28dfa7c86f15e2d77fada70

Files

ca19f2e7c28dfa7c86f15e2d77fada70
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 336KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TUPX1
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE