b41ab01b3129add101d0ee76062add70N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b41ab01b3129add101d0ee76062add70N
Size

1022KB
MD5

b41ab01b3129add101d0ee76062add70
SHA1

db26b1bb0ea695edd5bc0d96866f7e7c55512c4c
SHA256

d6cab7e7513fcc1698f5fa9fe6faff3ebc3036333d38a45dc491ae6a285ef265
SHA512

54318265b1d1e7579a437c5843ec12b8a27dbeaae7fc6846fe7e3ec794d86f99774a4b2a918021e2db5bcff549232b6dccc4babc628754a1a1d8e3e343e29148
SSDEEP

24576:v6Zv2ivhBVnFys7xP86LkRCwPYfuukvDtiflQRTVlHnHk:vE2ivhQs7dLkRumsqV1E

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b41ab01b3129add101d0ee76062add70N

Files

b41ab01b3129add101d0ee76062add70N
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE