db4da07a012ab26d21e57c02ebda0b58c64b6d84cfa5b0b6298b402c4dfd2d77 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db4da07a012ab26d21e57c02ebda0b58c64b6d84cfa5b0b6298b402c4dfd2d77
Size

240KB
MD5

3cf47789961c4e7bbc70018101a0f691
SHA1

457d5b38152d5c33e52baf0c0557efd07b1b337a
SHA256

db4da07a012ab26d21e57c02ebda0b58c64b6d84cfa5b0b6298b402c4dfd2d77
SHA512

a336036304f2fee95a098f904ff044f36166a15d34dcb46e07e4bfadbf602cf6357b4d8e63cba8f11d5361a78eeb4f74e77c19e08e3b165f51b14b6b87d5b240
SSDEEP

1536:xq5VwWDjDkdTRqHFOn8tIbbeYiuZIFS9bB:xq5ud9qHFO8Kf3rIIbB

Score

10^/10

Malware Config

Signatures

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db4da07a012ab26d21e57c02ebda0b58c64b6d84cfa5b0b6298b402c4dfd2d77

Files

db4da07a012ab26d21e57c02ebda0b58c64b6d84cfa5b0b6298b402c4dfd2d77
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

6b08fkjp
Size: - Virtual size: 76KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

d1z2zxll
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6a5envjv
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ