de02f30d2f36498c10d2b9b7ab6b05bb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de02f30d2f36498c10d2b9b7ab6b05bb
Size

7.5MB
MD5

de02f30d2f36498c10d2b9b7ab6b05bb
SHA1

5bc4994787e7eb8b726bdf9751bc190050660717
SHA256

52ae574d92fcbcd95aac5e7aaac9bc1f1e6414ba66b1959b735b26a6e748be92
SHA512

741970577d9762973d7dca0c3337167aefa7b3e1d2ba8f76d9f4fc04c81947eddac5ddc0a30a81eda5335bd188194315840abf92eced454759a6a23fa4a0cd90
SSDEEP

98304:jjBxcO4EYTjip76tLK3BDhtvS0Hpe4zbpaAKQkroGIWss2:jjBxcO4jjgjBnvjeApaAvkttsd

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de02f30d2f36498c10d2b9b7ab6b05bb

Files

de02f30d2f36498c10d2b9b7ab6b05bb
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 83KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE