9f982fdaee6645cb381810ead0a43b06b670606792e6d6f4f834acd02c1452b3 | Triage

Sharing

General

Target

9f982fdaee6645cb381810ead0a43b06b670606792e6d6f4f834acd02c1452b3
Size

47KB
MD5

d7c68aba6143f30fea85967f8119c685
SHA1

6a8c9d15d0b6f2ecc9246bcf4b8eeb24e12618e6
SHA256

9f982fdaee6645cb381810ead0a43b06b670606792e6d6f4f834acd02c1452b3
SHA512

6c6ff2d14e97523906044fa87eb248582fc126188a8c53e7b750698fa42d5884076d1ec39d32ca4d2a0b5c0f5ea233957f4fb78537024dc64df1811b3e1eed00
SSDEEP

768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhJZaf67xdKhUX8MBE:V7Zf/FAxTWoJJZE+ZO

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9f982fdaee6645cb381810ead0a43b06b670606792e6d6f4f834acd02c1452b3

Files

9f982fdaee6645cb381810ead0a43b06b670606792e6d6f4f834acd02c1452b3
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE