455319cd411a55d40f6c9bbed7cf2c45c4d7b44b4b43dd70e474c751d2c35bd4[.]exe[.]zip

General

Target

455319cd411a55d40f6c9bbed7cf2c45c4d7b44b4b43dd70e474c751d2c35bd4.exe.zip
Size

3.2MB
MD5

ba68373edb7525aa15778a1ab59010cc
SHA1

b64c3d9fc5b52ea3b68b4eca530b591d16bc2bfe
SHA256

8ad60459b43154c647708064d41de301ccda051ed66bd12c886c9c66ec22b67c
SHA512

0e49fb58b9444c1d85418ca5b3d4d1162bbe74206ca0b2f5b834605a6af5a448b6f6fd64496841a97ae7a2ca39a8b9fe51f95d582ca6be6d42d559bb38d4f8c1
SSDEEP

98304:WtRPg7+/yjLI7LFuZL1y7v5SRZ6lFhANawwBb3:ItgieNZLUD5cZnNawwB7

Score

7^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/455319cd411a55d40f6c9bbed7cf2c45c4d7b44b4b43dd70e474c751d2c35bd4.exe	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/455319cd411a55d40f6c9bbed7cf2c45c4d7b44b4b43dd70e474c751d2c35bd4.exe

455319cd411a55d40f6c9bbed7cf2c45c4d7b44b4b43dd70e474c751d2c35bd4.exe.zip
.zip

Password: infected
455319cd411a55d40f6c9bbed7cf2c45c4d7b44b4b43dd70e474c751d2c35bd4.exe
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 11.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE