7a11cdacdd86cca91fbf44b3b0a56d7d9c97575d9271ad7aec9bcfa79d8e55f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a11cdacdd86cca91fbf44b3b0a56d7d9c97575d9271ad7aec9bcfa79d8e55f2
Size

1.6MB
MD5

da3192b2bb394e75390e70f072bbfccd
SHA1

2b5abe7979eea7a6a2c23e646cfe9acb0b884135
SHA256

7a11cdacdd86cca91fbf44b3b0a56d7d9c97575d9271ad7aec9bcfa79d8e55f2
SHA512

bbaeb4fb99a70cf977fc9d2c6edfd70a71400f03fae769aa61f18fa8ac6b055fe4399d36c9fb06ae07ffd207c70513ba225d29f8b0997dd56897b4be20210cff
SSDEEP

12288:lHZVm/7ePnv+TWM+6+xTGzgFA+u/x8acJdPACFFbLFi8cj5UQbM72voXE:1v+NWu/adRYj5UQO5E

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a11cdacdd86cca91fbf44b3b0a56d7d9c97575d9271ad7aec9bcfa79d8e55f2

Files

7a11cdacdd86cca91fbf44b3b0a56d7d9c97575d9271ad7aec9bcfa79d8e55f2
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 968KB - Virtual size: 968KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 622KB - Virtual size: 624KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE