f540018e28a0a7ce4b8a8f391d4e84bf9951d650f7d277e724694baded13e5a1[.]zip

General

Target

f540018e28a0a7ce4b8a8f391d4e84bf9951d650f7d277e724694baded13e5a1.zip
Size

192KB
MD5

a625da1a195431f4c434eedf67b30b43
SHA1

d86df43dc77e38d70f49d97c08d6bae00734da67
SHA256

ecdfc49e9711104d53d57025071dd7accd2ac6718687f0c97e66b401b1357c8c
SHA512

4a65514babee48035bbf6a25e6139c0395a87a03b5ee0653a4ab4803f50813e4ae6b38d5cd08dac387405aca3c8236d9eaadb854fc0e52c37a13c30446c8ffa8
SSDEEP

3072:RC3OBhzO3MbLKxUxqNiEtzVCcZLfIdnTy1sOHJ7gghy7jcxQNL9ARbR74J94Htfb:w3whRLPOwc6+ssthyQgL9ARu3GJpn

Score

N/A

f540018e28a0a7ce4b8a8f391d4e84bf9951d650f7d277e724694baded13e5a1.zip
.zip

Password: infected
f540018e28a0a7ce4b8a8f391d4e84bf9951d650f7d277e724694baded13e5a1
.dll windows x64

Password: infected

e169fd485806917a0f54757af71036d7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetAncestor

msvcrt

wcsncmp
wcschr
iswspace
wcsstr
memmove

Exports

Exports

SupportedOSInfo

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE