f089f37f6113cb9132db9f11d5782930N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f089f37f6113cb9132db9f11d5782930N
Size

653KB
MD5

f089f37f6113cb9132db9f11d5782930
SHA1

278691f4a96821edf58ddf8930346b77ea6de58e
SHA256

2c3a6924f6c523101b516de09122325dcaf80a7cd3a6140cff6d21f6b4cd0606
SHA512

7b4f924f7f8c52787f5853389a28d78aa6ac9f83c43b27451ff16bf5bbbb8424e41d436258bc86ff28a894d5cef16f9538fcd2fa47ab977da68440e115fbdcad
SSDEEP

12288:7tKe6Zv23YLVFhBsC8iFHs+hsuQXIQRUP/g8t5XiSIEG:v6Zv2ivhBVnFvh5Q44UP48rIEG

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f089f37f6113cb9132db9f11d5782930N

Files

f089f37f6113cb9132db9f11d5782930N
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE