54d5684af4b21a9f341d880ac54f03f41b0782d5bb786aefaa5848826c2325dc[.]zip

Resubmissions

07/11/2023, 12:46

07/11/2023, 12:40

Target

54d5684af4b21a9f341d880ac54f03f41b0782d5bb786aefaa5848826c2325dc.zip
Size

42KB
MD5

56a2c1579872271d2aa246ca84d667ed
SHA1

5abc839589ae3473f1fa779039b0d99ded7a46a4
SHA256

8e97fded34d090bdfb2fede4a55374714332be01c6e7b6f4bc8f25cc3571e8b6
SHA512

75bf6bad734154aba4b6fb31a7254b4364d3b2c67a5e6b85301c3b5c9ddb35828f4d93e9744f33faabb3b5725ae45c9d4b1b472048df462c15dcd0c986195d16
SSDEEP

768:7uoo7Kk5irJ6YpOoVkz1aNX/ZGBu0/nRf6g1/ILFRsOot:7uoOKkqtVLvZguMR7OLnsht

Score

7^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/54d5684af4b21a9f341d880ac54f03f41b0782d5bb786aefaa5848826c2325dc	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/54d5684af4b21a9f341d880ac54f03f41b0782d5bb786aefaa5848826c2325dc

54d5684af4b21a9f341d880ac54f03f41b0782d5bb786aefaa5848826c2325dc.zip
.zip

Password: infected
54d5684af4b21a9f341d880ac54f03f41b0782d5bb786aefaa5848826c2325dc
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE