334e7a8526f687c6368ae5f9f3c679278a55e5b8654b587e3c9762892cff9379 | Triage

Sharing

General

Target

334e7a8526f687c6368ae5f9f3c679278a55e5b8654b587e3c9762892cff9379
Size

488KB
MD5

28abeb51156f453f01663c99704783ad
SHA1

082ae210e766993a59d4753e3be8caa7e9581e68
SHA256

334e7a8526f687c6368ae5f9f3c679278a55e5b8654b587e3c9762892cff9379
SHA512

1c0835ddabfdb04f8fc63aa00b107f4cec3f1621a36e5630e8d3c77567f3fbc4662aeaf00d58da1ea9037d053a05a3dd46491ed00d1d8beb27265d359d93fe70
SSDEEP

6144:xcm4FmowdHoSkhraHcpOFltH4t+IDvSXrh5g8hZTydOAkOCOu0EajNVBZr6y2WXH:74wFHoSceFp3IDvSbh5nP+aih

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
334e7a8526f687c6368ae5f9f3c679278a55e5b8654b587e3c9762892cff9379

Files

334e7a8526f687c6368ae5f9f3c679278a55e5b8654b587e3c9762892cff9379
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 104KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tkjdelw
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ