9ec8235644404413b88321b7a3c85e2667723426f39e3561b7f0e529e23ee92c | Triage

Sharing

General

Target

9ec8235644404413b88321b7a3c85e2667723426f39e3561b7f0e529e23ee92c
Size

10.4MB
MD5

7385b251e12d3eb63b8f83ddb5d5324b
SHA1

ab8305cf5ed56531cf8c2590029de71d0f2f52ce
SHA256

9ec8235644404413b88321b7a3c85e2667723426f39e3561b7f0e529e23ee92c
SHA512

e56928b566b907e1cbac9bb8578c3df90f4ce1f200429b8522f08c14bf987d9d7f79043bd0ab4a220bbebcaa91273d38c4390d02f98a73a12ae3af88a00fb455
SSDEEP

196608:xXcDvCazDu51rxNpZ8iu/YYUfQ9rysQIs7WofFv+t6v8GOZIfVJa1e3RJdAV:N+1i1vJx0CWofFc60Dca1o

Score

7^/10

themida

Malware Config

Signatures

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

resource	yara_rule
sample	themida

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9ec8235644404413b88321b7a3c85e2667723426f39e3561b7f0e529e23ee92c

Files

9ec8235644404413b88321b7a3c85e2667723426f39e3561b7f0e529e23ee92c
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 1.6MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3.9MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 1.6MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 16KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 5.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ