e22a84307883abf745d29eebe9d15acce29e162879b17559abba379abb6c3e7d[.]7z

General

Target

e22a84307883abf745d29eebe9d15acce29e162879b17559abba379abb6c3e7d.7z
Size

179KB
MD5

866cd70b7d7963756b22665437287d7e
SHA1

6497b5bb0034e85de130419b81aec924492b9ff3
SHA256

d48958d2dfa4ae81b0f960a4afbc8e649905a8dc8cc9140671913f113852c063
SHA512

0a5a9028ead36ae38b1d62ffb894ff650b3f0e69db4f2b7f7695cf3a0dcbdd0233bb4f25659cfd0e75b8a8cbf0e57adfacc09fb9807df64be4837f0c17bbf194
SSDEEP

3072:PSPpCcV7kL00aIs+R1CyC2sIszqlzI8YsHCx3I/YcM3LvZRrRWKoZWi0m4XP:uCqwL0tt+R1x2ulkBBsq3H85ci0PP

Score

7^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/e22a84307883abf745d29eebe9d15acce29e162879b17559abba379abb6c3e7d	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/e22a84307883abf745d29eebe9d15acce29e162879b17559abba379abb6c3e7d

e22a84307883abf745d29eebe9d15acce29e162879b17559abba379abb6c3e7d.7z
.7z

Password: infected
e22a84307883abf745d29eebe9d15acce29e162879b17559abba379abb6c3e7d
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 624KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 180KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE