a600ce7f58bc3296788ca8a8b30735c7bf051e4e9a3d46584fe83bb7cfc5d81a[.]zip

General

Target

a600ce7f58bc3296788ca8a8b30735c7bf051e4e9a3d46584fe83bb7cfc5d81a.zip
Size

1.3MB
MD5

a6d99eb86c3fa2529651b98e84ecbdd3
SHA1

56a5d20ce87b6b0311b794a47ff34919c185bbcf
SHA256

cc555e7c4b89de37ab73856b20305f0f81f3cd02ea0d43925bab4f7eb288dd94
SHA512

39fa3efab7270198e082bae781d059a7b06703bcc7a088424cd7e060386324bcb430a14ce3fb798b63a70489a12e0bd5ef38fb937e00b8e3da1a0cfad06f7d50
SSDEEP

24576:wQ28XshUiSorQUHlU9dZEcyIcV1bSAaYn9Mn5ZAwAE/zjWjH+H:wQ2LUskUFydZEcyJVBSAaYn9e5ZAwxkI

Score

1^/10

a600ce7f58bc3296788ca8a8b30735c7bf051e4e9a3d46584fe83bb7cfc5d81a.zip
.zip

Password: infected
a600ce7f58bc3296788ca8a8b30735c7bf051e4e9a3d46584fe83bb7cfc5d81a.exe
.exe windows x64

Password: infected

3024f02f280970c052186ed331ca8305

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

shell32

DragFinish

mscoree

_CorExeMain

advapi32

RegOpenKeyExA

user32

CharNextA

kernel32

GetModuleHandleA

Sections

.reloc
Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 774KB - Virtual size: 773KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE