7d9c17e47c6b68d4412bca20717fe360N[.]exe | Triage

Sharing

General

Target

7d9c17e47c6b68d4412bca20717fe360N.exe
Size

296KB
MD5

7d9c17e47c6b68d4412bca20717fe360
SHA1

2a48cac1fc07664f0fce47b2e38ebbb6e50410da
SHA256

005d690d5b5ee2c5b127780ecb66c93a7fb937e102e96064ef8461b99fada6be
SHA512

e742c5584eb26524bcb8c64eb7095299b43018fb4c23c9e0896d0a92e2a134a967e0bfbf09c61206050119c16b1283f6dcc14cd13ec0984734ef37c501a93b7c
SSDEEP

3072:JNgNjNEyzFN6tE80594outfUeLqIB0ReWxUzL/:JNgNjNbhD594oSBa8

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d9c17e47c6b68d4412bca20717fe360N.exe

Files

7d9c17e47c6b68d4412bca20717fe360N.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cfmbtv
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 148KB - Virtual size: 148KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE