96911ff54c01adb5320df2eb6997039be5af447bb91a3e3c21297456e59be66cN | Triage

Sharing

General

Target

96911ff54c01adb5320df2eb6997039be5af447bb91a3e3c21297456e59be66cN
Size

110KB
MD5

1f5ee15187ed47cb55326b9b76946400
SHA1

ea025350434a184fcbd33b3a6ffb33a34bacb697
SHA256

96911ff54c01adb5320df2eb6997039be5af447bb91a3e3c21297456e59be66c
SHA512

461435c1cd5c60a8f4dc278ba789a384eff2e715deeb770409725f8750199225d047d6b90453caf271c7f0236da9e3e428bd670263df29bbd6132189018bc9b7
SSDEEP

1536:WiLOvRmmQegJfBbmAQ256/ZrwWnwqjhurmKFcxL8JQ2r0Eg:WiyvRmDLs/ZrwWJjAqGcRJ2hg

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96911ff54c01adb5320df2eb6997039be5af447bb91a3e3c21297456e59be66cN

Files

96911ff54c01adb5320df2eb6997039be5af447bb91a3e3c21297456e59be66cN
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 61KB - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE