NAKED_CONE_GIRL[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NAKED_CONE_GIRL.exe
Size

923KB
MD5

870024572e363ab55a2ee835a6e25cdd
SHA1

b962340710d604f068f56487f277c14508bd44c2
SHA256

69c937038418ad1b17102d89fe98ff0821496a24362726899891eb586f9eaa3a
SHA512

587dc18c3b8c67dacf93caacaa2aa53b1589bf956d60fb51780e95f9f5d727c569450ce54b8898d4487f4748d7257fafc0268fb96f7d4635e698224c33de602d
SSDEEP

24576:UY2wg3MYC4vA/pcOTknX52K2N9msiYtPzNhhJc4K:UH3MR4vkpcOTgkK6FBzNnJc4K

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NAKED_CONE_GIRL.exe

Files

NAKED_CONE_GIRL.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 906KB - Virtual size: 908KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE