5997a9a36441df8133adcc012d5ec333fb2f6284e174838a60705eb6bc2fe54f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5997a9a36441df8133adcc012d5ec333fb2f6284e174838a60705eb6bc2fe54f
Size

906KB
MD5

b36bf8d600c907f11cd8ba1b78f5d85e
SHA1

a810ec562cfd955fb5efed2667aadb7ad05409f5
SHA256

5997a9a36441df8133adcc012d5ec333fb2f6284e174838a60705eb6bc2fe54f
SHA512

bf43b2f02b929aba2d34450796fcc255b0ea10d1b7107e582e189f2512d44b00f0b4918b7f4404c87fa554855cf4808ef294438b31c3580d01a825aa4ff9d9ef
SSDEEP

24576:FPuhXZOSzXFZl1mTYodMaenPFiCqEqcJLD:kZzF1uYo+aen9yEqi

Score

10^/10

Malware Config

Signatures

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5997a9a36441df8133adcc012d5ec333fb2f6284e174838a60705eb6bc2fe54f

Files

5997a9a36441df8133adcc012d5ec333fb2f6284e174838a60705eb6bc2fe54f
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

FKP0
Size: - Virtual size: 18.4MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

FKP1
Size: 203KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE