369214a4c7a9ecbf9de7866069344970N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

369214a4c7a9ecbf9de7866069344970N
Size

1.3MB
MD5

369214a4c7a9ecbf9de7866069344970
SHA1

2e289b5505a1ed5fc443e5ca2cee8fc482c0c56f
SHA256

56303a4616f53dd305f7c3a2d0cd4e1259c0f8893d445eecb679ad62ab3c92e9
SHA512

7d458797c1a3d9b3d1ad4c3629d4cee699bbec8f419d1cec549c84fa96114c1bafa7f0d2111a5e8a3fbfff5a029bdd81ee2999ce57065297a102950af4b26086
SSDEEP

3072:fny1oR9uFn+uUAtFpaUpaCpampauku3Xu3d7RbPH3:KWR9uFn+uUAtFpLvqgXg3

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
369214a4c7a9ecbf9de7866069344970N

Files

369214a4c7a9ecbf9de7866069344970N
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE