df4cfbf21a01a264d4191280ca243b38f0d5d465777c8424eb2a9b49bb5f02ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df4cfbf21a01a264d4191280ca243b38f0d5d465777c8424eb2a9b49bb5f02ce
Size

90KB
MD5

6183fa348e6ab8c6b0a141a9a71dafe7
SHA1

b0ef5ca03973c0959c74ce6b86f83845ef3b5c97
SHA256

df4cfbf21a01a264d4191280ca243b38f0d5d465777c8424eb2a9b49bb5f02ce
SHA512

9267a87b3b74b037e499ba48e84b02ead7920139731f7d04ff8638e37ac4524a6a41de5a096630781099ba68e510e76f8703c9301f2336014aa11903a70d410c
SSDEEP

1536:V7Zf/FAxTWoJJZENTBTYRNoDEUm3CQcNk:fny1tE8mEtVcu

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df4cfbf21a01a264d4191280ca243b38f0d5d465777c8424eb2a9b49bb5f02ce

Files

df4cfbf21a01a264d4191280ca243b38f0d5d465777c8424eb2a9b49bb5f02ce
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE