e9cef52bf082c87766bbac0b3324c3d76e66e9d5b943e751a04583dc041a0273[.]zip

General

Target

e9cef52bf082c87766bbac0b3324c3d76e66e9d5b943e751a04583dc041a0273.zip
Size

43KB
MD5

e1d76d6ce850e722753f9f5f71daf2f3
SHA1

8bfe7132df111f21a9f5ea9ddb4c103a4dc9959e
SHA256

3de9f5e74e23903a8949f55f5f0e16df113cc537c0d40540f077df87e38d39cb
SHA512

bcd61614dce2d8f6204d839d09cd500e9afbf921debf804c735c891507882006c72447e1cbcc9bb648584b7b2e4f5f4017a2cbad9e2654d254ae046fdd7b9acc
SSDEEP

768:ZBWWPEgZxcea23BSrsaIuO5PvbFdDad28xMeIQhlQKJ58a6Hq/uadmJa+R8Mx848:ZBWCzZxiW8AuO5PvbFdDaVXhlQKoaxuo

Score

7^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/e9cef52bf082c87766bbac0b3324c3d76e66e9d5b943e751a04583dc041a0273.exe	upx

e9cef52bf082c87766bbac0b3324c3d76e66e9d5b943e751a04583dc041a0273.zip
.zip

Password: infected
e9cef52bf082c87766bbac0b3324c3d76e66e9d5b943e751a04583dc041a0273.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE