36368ccdbd5c56b678a8b28221c89360N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36368ccdbd5c56b678a8b28221c89360N
Size

172KB
MD5

36368ccdbd5c56b678a8b28221c89360
SHA1

387279cd5100ec0f0ff3f9532a1ebd69edbbe22e
SHA256

eb9b27b5c4704adb263ff20a30db8ae543de0d0ca54bd6a2582bf3680f8f93c4
SHA512

3ee27f610c045271c4892c5ec7953ea41eceb40e9aa1192a857da6daec8543b5184a34126bca279dc24aad817a0434a2999b1fe5d64f7869b6fa2ee90f3fef75
SSDEEP

3072:fny1tEevnUB/Oq2KOQAsPdMRAH46SnnnSV/Vbn+zOln872HyZU3YtZVZb0S5SbL8:KbESplVOo

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36368ccdbd5c56b678a8b28221c89360N

Files

36368ccdbd5c56b678a8b28221c89360N
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE