8cb8efd6229dc2777d13c9a99925cee0N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cb8efd6229dc2777d13c9a99925cee0N.exe
Size

757KB
MD5

8cb8efd6229dc2777d13c9a99925cee0
SHA1

136b31a7b95840bcf4b408dde138baaa91f0feae
SHA256

2c116640112b7e65c366bdcc5498cb783aa6cc0753ef190ac767f0dad2217451
SHA512

673fd854ff205d4cc37927828460c791de7e9edd8c735562b79c5cf23f4758b315b786992ca54113d163ee0341e3647700811b70cf65c6efb5a4f90f4071512c
SSDEEP

12288:PxS0PaVElqQ8dgaMaG+67goxcggi7NZX0aCSlXOkmyOlI:PxPP6ETaMZ+6cXu5OlI

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cb8efd6229dc2777d13c9a99925cee0N.exe

Files

8cb8efd6229dc2777d13c9a99925cee0N.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 580KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 161KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE