230b4ab23bee81d477b629de17398df845cf6adb2ef4c9adb60d99207b52fe0e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

230b4ab23bee81d477b629de17398df845cf6adb2ef4c9adb60d99207b52fe0e
Size

156KB
MD5

b431f0563cbefd6994c7104f98e6bb45
SHA1

b3ccdc725d94580180f95a2fa5da51a452b87dec
SHA256

230b4ab23bee81d477b629de17398df845cf6adb2ef4c9adb60d99207b52fe0e
SHA512

a27a80f7433ba5b334b23ba9aa9667f774dc3209d66049030a6aa8a43eb65e68c9989b9051e25a6e6f03778e29ee8d9a3ab4a791d55daafa7aa0c0955048b370
SSDEEP

3072:fny1tED7dsXDZklYGCYusul29iMGfUSaOy9SnJUwFU+FUhFUeFUXFUqyqKRrpF6+:KbED9iMGsSaOyiG

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
230b4ab23bee81d477b629de17398df845cf6adb2ef4c9adb60d99207b52fe0e

Files

230b4ab23bee81d477b629de17398df845cf6adb2ef4c9adb60d99207b52fe0e
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE