7772442080133a72b1e4ae2759b59deb3f8bfb5f305bffbd63ee7af6e61a435cN | Triage

Sharing

General

Target

7772442080133a72b1e4ae2759b59deb3f8bfb5f305bffbd63ee7af6e61a435cN
Size

6.3MB
MD5

48c7f7181d8c61dda64031f1e7b58a30
SHA1

42d97244d685773df178bb1cbe4989769a62ab44
SHA256

7772442080133a72b1e4ae2759b59deb3f8bfb5f305bffbd63ee7af6e61a435c
SHA512

351a904304847196f49aaa64ccea7caa31a6cdcb2d80159adfd9c564cca6c86a2c026a8df54b2fbf0d9d13d16f249e567f362ff01c5476ee786ffb97afa5a1f0
SSDEEP

196608:7PWSV+6kU3lvXMnAasQYdTVcCnsv4zlLtpk1VG2JV:N/asQYdTVcCnsv4ZLtgB

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7772442080133a72b1e4ae2759b59deb3f8bfb5f305bffbd63ee7af6e61a435cN

Files

7772442080133a72b1e4ae2759b59deb3f8bfb5f305bffbd63ee7af6e61a435cN
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 4.8MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE