e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35
Size

90KB
MD5

26099f65f15f145cbc1bb1a90606024d
SHA1

a25b0c430263849e5088d255c918857c394866c6
SHA256

e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35
SHA512

57d18b8108e12f4deb874a28446ad305d8149fa0d33b006f0203a24e0c7cd79918fe0d4eda6318af13f2c4bd1737f2b9e67509d7ecc6f0148c52f46324644705
SSDEEP

1536:V7Zf/FAxTWoJJ7T8ov61XxvEci9vQG9xmX/D562aqQCRg9LKgQLVfDay4RNZTdc4:fny1IO9+s

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35

Files

e40c05d443df28dd075f56df41b23b446c7f8f91f436554688bdfb4af4dd7a35
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE