General
-
Target
Extreme_V4.2.exe
-
Size
44KB
-
MD5
42543291c63df7ea7c65ecb6577f915a
-
SHA1
8ea6dac698bd1f222406247267d251bc752b0ec2
-
SHA256
49aa63c8ffb77bae81987916b809f168442807c87de01f7baa01b430a28a669f
-
SHA512
c98514fcf6e8b8f8b53793ce9ed773d78ba3aee7411c7a35fd8c047dda6def5556d36582138159f418744410242f10f3a6cdc91723e572b664478e61ef643523
-
SSDEEP
768:GoVzlbz8pRftp9hNsOjz4td8n07CO0f8cbFX36F8nbcuyD7U:FNlbuRfbF/jzeq0eO00oaCnouy8
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Extreme_V4.2.exe
Files
-
Extreme_V4.2.exe.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 384KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 38KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE