c981a0a51ad2f677ea4e2cac57e0c3ba573b0ad1d8100ff122de3a12553298aa | Triage

Sharing

General

Target

c981a0a51ad2f677ea4e2cac57e0c3ba573b0ad1d8100ff122de3a12553298aa
Size

170KB
MD5

65b830b632cf97bf2dcbaa925a4d9cfd
SHA1

9f5172e3fba050a0b0686669ad2566395cb08aec
SHA256

c981a0a51ad2f677ea4e2cac57e0c3ba573b0ad1d8100ff122de3a12553298aa
SHA512

426ad4d5858e0b47dd2ef623bb0e07ce0f83cdadedb93db5007a3142e3fdbcebb61dbea76be645722a50d4ac8b28ce3ba80c1fbece692d3db8a49ca310f5d7ae
SSDEEP

1536:V7Zf/FAxTWoJJ7TTQoQfTW7JJ7TTQoQtGNUKTiJQbQ2ZbU+E9J:fny1oRooR8NUKTi4hlI

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c981a0a51ad2f677ea4e2cac57e0c3ba573b0ad1d8100ff122de3a12553298aa

Files

c981a0a51ad2f677ea4e2cac57e0c3ba573b0ad1d8100ff122de3a12553298aa
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE