64f5f0c1c8a7dffe8e2d37c4cd8ef770N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64f5f0c1c8a7dffe8e2d37c4cd8ef770N
Size

177KB
MD5

64f5f0c1c8a7dffe8e2d37c4cd8ef770
SHA1

9a8b310b949ec4986975bf6507296a7418ef2f35
SHA256

a55a769a5ebe78432af0684a6dac79aa4e1d877bf802310bb1a8d41e7201b1b9
SHA512

a14f08e15147ee7214147a2a545dda33830be4f0b900fcdede9bd1daf0c665c6d59f75cd1484c72876bcfff3f2110c669e466a01b3135bed925f3e8eef45d837
SSDEEP

1536:V7Zf/FAxTWoJJZENTBWv36xmdG3mdGYTW7JJZENTBWv36xmdG3mdGPlPdA3NyaMt:fny1tEevwtEevWPdA9yaMDT2U

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64f5f0c1c8a7dffe8e2d37c4cd8ef770N

Files

64f5f0c1c8a7dffe8e2d37c4cd8ef770N
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE