e928e034c1df4bf61807f5a294c6b1a2bd7d6948a85a7db1a5ed6c4b27a37b4c[.]zip

General

Target

e928e034c1df4bf61807f5a294c6b1a2bd7d6948a85a7db1a5ed6c4b27a37b4c.zip
Size

629KB
MD5

a435805f50e23866e79aae0a7bd93cd8
SHA1

059384b2a0d6d8b4b194ff2779be937a8784a951
SHA256

84516c57b3e68a9bdece3f0ce7b1f6605344d8e7237577b0d4a82f835cbd9bdf
SHA512

5a7cdc5e8966f5a3ca7d7f37ba0b51ceeb0af519be21b400cb329babc8cd6b2b9218750ee0e03898c3f4560157ab792e5ec038fd8dae63ee18c5636b3337af98
SSDEEP

12288:pwlTzG0wV7dtZkGAmm3mrDgdCDl+Fqp3McrcvF/aLbVP9Iyr4YFiw/qJsY:piG0w7TuGAmie8Nqp3McrIgbvIyEYFiR

Score

1^/10

e928e034c1df4bf61807f5a294c6b1a2bd7d6948a85a7db1a5ed6c4b27a37b4c.zip
.zip

Password: infected
e928e034c1df4bf61807f5a294c6b1a2bd7d6948a85a7db1a5ed6c4b27a37b4c.exe
.exe windows x86

Password: infected

a4c59f8399a53bb5c57d011baca5b971

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

rsaenh

CPDecrypt
CPEncrypt
CPCreateHash
CPDeriveKey

kernel32

GetCurrentThreadId
LoadLibraryW
WriteConsoleA
GetShortPathNameA
CloseHandle
HeapAlloc
VirtualAlloc
OpenFileMappingW
CreateSemaphoreW
LoadLibraryA
CreateProcessW
OpenMutexA
lstrcmp
FindClose

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ydata
Size: 661KB - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE