7b99a85df27d9d021a1142d13c015c33733274cec3eb6160d91d6a250f9b258cN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7b99a85df27d9d021a1142d13c015c33733274cec3eb6160d91d6a250f9b258cN
Size

167KB
MD5

fe3a5c903926fcb445979ce37f80eb50
SHA1

d91803e0cf716eaf79ede3057d1892cbe8a73ab0
SHA256

7b99a85df27d9d021a1142d13c015c33733274cec3eb6160d91d6a250f9b258c
SHA512

50debd9ec6ced18adb58995faf7790761a68306e02611cbe5a79db40d5e19e1f6727cde987f49a23bd299b68bdf3348fe265b6f2753b81148e0b3d9af6b31c5c
SSDEEP

3072:fnyiQSox5LrLQSox5LruyKoIWbsHfySkT5GeCyi348oWGRPOzkjId6q8UdrSD+kH:KiQSox5DQSox5J

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7b99a85df27d9d021a1142d13c015c33733274cec3eb6160d91d6a250f9b258cN

Files

7b99a85df27d9d021a1142d13c015c33733274cec3eb6160d91d6a250f9b258cN
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE