Sample_652f2ccf33a29a9c6d9ca1f20d2cb35bdd7aafaa-copy[.]zip

General

Target

Sample_652f2ccf33a29a9c6d9ca1f20d2cb35bdd7aafaa-copy.zip
Size

80KB
MD5

36f4259259594f816657cb970152a50b
SHA1

638cd473b38dff09115bcfef3468f7ea69a365de
SHA256

07a66bd7e8898afaf9572d13c92f0d42a4bc98835f925720f362a11a58a96110
SHA512

d050e1e87b4a8cac116acb4f56d68ed285c2293e91e03064db57d54c74fe804a0d22b6ed4e8a8a09666fff34bb88e06ad8557dc22463389585043b1019b7f11b
SSDEEP

1536:OqAY2W4WUnQvJbWkbLzrVCbtE/EkAZjJNZu4nLI3oG18XU8:OzRWsn4JbWkb/ukEk8lu4nLIZiXU8

Score

8^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

Processes:

resource	yara_rule
static1/unpack001/DEL.exe	upx

Sample_652f2ccf33a29a9c6d9ca1f20d2cb35bdd7aafaa-copy.zip
.zip

Password: infected
DEL.exe
.exe windows x64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

UPX0
Size: - Virtual size: 104KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 75KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE