e68440dac6c1819a397157ff2d07510a7de3e6dbd9911ff4b1ed230686bcaa96 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e68440dac6c1819a397157ff2d07510a7de3e6dbd9911ff4b1ed230686bcaa96
Size

379KB
MD5

2ac5f1be25645d66e28800899e27be5b
SHA1

dd6e0706d6b4fdea48f38cfad9722541bf561b6e
SHA256

e68440dac6c1819a397157ff2d07510a7de3e6dbd9911ff4b1ed230686bcaa96
SHA512

76321a2ddd9b55d333a418913468e4ccd1460f70f0fd21fcc48c3407949df1fe3cafa11d805a67f300cbdffde7c98b2f756dde19e9faa6da01eb543f0dd30318
SSDEEP

6144:QhsZkhMWNFf8LAurlEzAX7oAwfSZ4sXUzQItS:+UQMCqrllX7XwfEIk

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e68440dac6c1819a397157ff2d07510a7de3e6dbd9911ff4b1ed230686bcaa96

Files

e68440dac6c1819a397157ff2d07510a7de3e6dbd9911ff4b1ed230686bcaa96
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 86KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.htext
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE