98f5b6fa9d2cbd34e16049f9ddc845dea8b1edc50409aaadea505580671e464e

General

Target

98f5b6fa9d2cbd34e16049f9ddc845dea8b1edc50409aaadea505580671e464e
Size

198KB
MD5

bfa9e0ac33e2a0fa6e6f591c05ec6346
SHA1

1109dfd73792c8b9b76a7ca25ec27fdbb92fa680
SHA256

98f5b6fa9d2cbd34e16049f9ddc845dea8b1edc50409aaadea505580671e464e
SHA512

98275f405e9c68265c1a05cf1d1b92931264d9d0b06b209af66142272c4aaf5f1cba47f89e9cc2078c2148e39f7e2977e73cfa3a15b4a88c3652e6ff4664975a
SSDEEP

3072:iEjBGs7sjRZxVQPBbMqr7NDyh3kw4bYQUzStVFlkl5X+uRB9D1svXXuhtdBqAaRq:/tuQdj0h3PMnluRBVeXutAAa37XAk

Score

8^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack002/dhl-international-shipping-ID-notification.exe	upx

98f5b6fa9d2cbd34e16049f9ddc845dea8b1edc50409aaadea505580671e464e
.msg
- http://track.dhl-usa.com
- http://www.dhl.com/track
dhl-international-shipping-notification_06156012_ID6ULKWRN.zip
.zip
dhl-international-shipping-ID-notification.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 167KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE