eae876886f19ba384f55778634a35a1d975414e83f22f6111e3e792f706301fe[.]zip

General

Target

eae876886f19ba384f55778634a35a1d975414e83f22f6111e3e792f706301fe.zip
Size

43KB
MD5

8d24855525b7e1518adf4c67f0d6c434
SHA1

0a1a48d8631df9809f9121dbeab386302e64d863
SHA256

f54cb90bd6c57fffde84b00c514e0a8cc0b9e2dd62432496a57836dfdbfe58d0
SHA512

9069ccf316ddac270a8786b0e61594aaff8927dbb7da40db87667dc4b0ab152f0fb0cf87e6a64ba5374679b5594cd04c63045131040919ba2cf2a1504f6c7d93
SSDEEP

768:kUtcrL6QwfXvP55+cGvd4MjcpHZA+ssb+hbTKLR12xi1cxlM6M52ORwz:knrL6Q23+cGOicp5AxlbJWcxlMt0O6z

Score

1^/10

eae876886f19ba384f55778634a35a1d975414e83f22f6111e3e792f706301fe.zip
.zip

Password: infected
eae876886f19ba384f55778634a35a1d975414e83f22f6111e3e792f706301fe.exe
.exe windows x86

Password: infected

30fe3f044289487cddc09bfb16ee1fde

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrStrIA

kernel32

GetCommandLineW
lstrcpyA
LoadLibraryA
GetProcAddress
lstrcmpiW
CreateMutexA
ReleaseMutex
MultiByteToWideChar
CloseHandle

shell32

CommandLineToArgvW

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ