b39c41188ea11ba7d5b33a235257a30c1276d2f83fef889a12d878f4ac2c6f7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b39c41188ea11ba7d5b33a235257a30c1276d2f83fef889a12d878f4ac2c6f7c
Size

94KB
MD5

4bf75f38e7ee9aad873fc917f7f75ea0
SHA1

fd1cfc1ad21bd681348515e928f4f028e9bd4671
SHA256

b39c41188ea11ba7d5b33a235257a30c1276d2f83fef889a12d878f4ac2c6f7c
SHA512

745a85abf7377635f6dce38082a87c811573c6b9c8d143644881d26acd52e817b209a52563949f3718993a8c79506b3e7df9c2870b78bf3a6a64fd5b6bc52cd0
SSDEEP

1536:67Zf/FAxTWY1++PJHJXA/OsIZVJaKJaW5C3POnAs3uV24T75F3AJQGz3:+nyicnnezn5FcX3

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b39c41188ea11ba7d5b33a235257a30c1276d2f83fef889a12d878f4ac2c6f7c

Files

b39c41188ea11ba7d5b33a235257a30c1276d2f83fef889a12d878f4ac2c6f7c
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE