fbb5eeedf873a1a308d1d4ea2975da64b3023172ee6db9cd5bcfcd258a15dbefN | Triage

Sharing

General

Target

fbb5eeedf873a1a308d1d4ea2975da64b3023172ee6db9cd5bcfcd258a15dbefN
Size

88KB
MD5

ec42ac02d01e182bb93a8745d271f2b0
SHA1

612fd3e37ade71c9914384efedeb20a535f44d87
SHA256

fbb5eeedf873a1a308d1d4ea2975da64b3023172ee6db9cd5bcfcd258a15dbef
SHA512

4757af1a19c8e2dc460abab671d8cf40b4fa1655cb32331584a820ad3d5ffed30a609ec1f633ef89454487e5ef2d7697af3ebad6dff083802cc9a675f45818d2
SSDEEP

768:/pQNwC3BESe4Vqth+0V5vKmyLylze70wi3BEmn:BeT7BVwxfvEFwjRn

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbb5eeedf873a1a308d1d4ea2975da64b3023172ee6db9cd5bcfcd258a15dbefN

Files

fbb5eeedf873a1a308d1d4ea2975da64b3023172ee6db9cd5bcfcd258a15dbefN
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 41KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE