2278462de0ba08acb5026ca05401b8a4dfd323610835d1a8cf8908acc25d4de6N | Triage

Sharing

General

Target

2278462de0ba08acb5026ca05401b8a4dfd323610835d1a8cf8908acc25d4de6N
Size

5.0MB
MD5

5cdd22edf1f37c5d5d1784b2ce68cb20
SHA1

ac3bb3aaf3abe304b79c0952f552882b366049cf
SHA256

2278462de0ba08acb5026ca05401b8a4dfd323610835d1a8cf8908acc25d4de6
SHA512

29262b68974b95c8edfa6739069dad5998e1ab83689505aac89dccaba15343b0608177f7548dd4c3203add13b3d8e6759e1eb15a2744553f47f81f335a98cd39
SSDEEP

98304:8QA29gduColSMQBJaGeozDp7dAu71dkS+z6YdH/fetlmcYzGY98N:f9gdro7QiGeoxeu71dhWH/5cYzJ9e

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2278462de0ba08acb5026ca05401b8a4dfd323610835d1a8cf8908acc25d4de6N

Files

2278462de0ba08acb5026ca05401b8a4dfd323610835d1a8cf8908acc25d4de6N
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE