152a5b8ddba56e6cb43751cfd97136ef9adbf3507c0dcd4bc8f583367616784bN | Triage

Sharing

General

Target

152a5b8ddba56e6cb43751cfd97136ef9adbf3507c0dcd4bc8f583367616784bN
Size

63KB
MD5

722a13c5056a3983d59875ba0cd70630
SHA1

053dab91d417dbf2bc4c63181f89d2a43c7b14b5
SHA256

152a5b8ddba56e6cb43751cfd97136ef9adbf3507c0dcd4bc8f583367616784b
SHA512

043af3d656fdf165f3ea3e6120d0a419ce7209ffb482bc56d18690c029abc8c056587ee12c7fd4c76f8f3dd29c72019ceb27f6cef40a2fa2373158d82af978a7
SSDEEP

1536:V7Zf/FAxTWoJJ7T4MCXPYFbIhbaJuYnQ1v:fny1UMCWM

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
152a5b8ddba56e6cb43751cfd97136ef9adbf3507c0dcd4bc8f583367616784bN

Files

152a5b8ddba56e6cb43751cfd97136ef9adbf3507c0dcd4bc8f583367616784bN
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE