9153808010[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9153808010.zip
Size

619KB
MD5

214bb6347cffeb07969a31d0cc01c0c9
SHA1

a473b46a2a03a9b36925175ddc2598810a1bf3a5
SHA256

74c5de7ec8e2f474d6752019bb1f92672aaa656293b0170744b1cac84e6f5892
SHA512

76290f718066a58840fc5438485c7ffb538dbe7e9741e62be0d60b099804fdce30abadae9d3ce3c06e4384ae3e65119e16fc0fe0a47fddd3459520456f8cee22
SSDEEP

12288:yeStwkBI3bFc6kpOL8tTNMlSAWkk7Ei1exUlqrIzrXi7Rh:dSmUaS6kowtxeVZs6UcIHXgn

Score

1^/10

Malware Config

Signatures

Files

9153808010.zip
.zip

Password: infected
61685ea4dc4ca4d01e0513d5e23ee04fc9758d6b189325b34d5b16da254cc9f4
.exe windows x86

Password: Blind Eagle

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 648KB - Virtual size: 640KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ