40471adf3d0770eacbce8f00455b4ba54fc90695aacc824b46aaaa496820ab52N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40471adf3d0770eacbce8f00455b4ba54fc90695aacc824b46aaaa496820ab52N
Size

595KB
MD5

7c8918971515c66963fbf44f802d7980
SHA1

01e8f14929c61de57b1f4548c1fd6c85d9ecf0c0
SHA256

40471adf3d0770eacbce8f00455b4ba54fc90695aacc824b46aaaa496820ab52
SHA512

fdb7ae5872f36d88470ecff1d9781b6567573cb5e5b728df381073fde0f3b81967efdd58d57f9651a151b0f28cae429d5387dadd11d3c980f715f5c17b3b5846
SSDEEP

12288:tIqVR0kCQ84nTFotbwnJOzctwkQtr0NlLzRsxNh1Usmhrr:tZRJH8Omkkzc6kQmlJi/UZhP

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40471adf3d0770eacbce8f00455b4ba54fc90695aacc824b46aaaa496820ab52N

Files

40471adf3d0770eacbce8f00455b4ba54fc90695aacc824b46aaaa496820ab52N
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE