9a1a8686efc34e2dccb0f2faf8cd6d55914941d8348db87bee40db5b93e87410 | Triage

Sharing

General

Target

9a1a8686efc34e2dccb0f2faf8cd6d55914941d8348db87bee40db5b93e87410
Size

984KB
MD5

45a3a89b393b34f180890191da4b9a24
SHA1

9d1a40a1c99c02ae5a715b36f5f39b395bac30d4
SHA256

9a1a8686efc34e2dccb0f2faf8cd6d55914941d8348db87bee40db5b93e87410
SHA512

c3f4f52facef86ffc6f8b078264cf3e8c46f77dfa6730c6c2c87c54bdfd76748f1edc147405043afd0a220563da9561b43c4daaac9150bdb553ddd512d848226
SSDEEP

24576:v6Zv2ivhBVnFys7xP86LXtqIWwUWobTviNpWMTMJ8o:vE2ivhQs7dLXrWrbbiNpQ

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9a1a8686efc34e2dccb0f2faf8cd6d55914941d8348db87bee40db5b93e87410

Files

9a1a8686efc34e2dccb0f2faf8cd6d55914941d8348db87bee40db5b93e87410
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE