General

  • Target

    Pass_1234_setup.zip

  • Size

    2.5MB

  • MD5

    ae55f3146ba5c26ae41d72f267349398

  • SHA1

    a90cb627627e0f38bd975fbcd225d8b622e61541

  • SHA256

    57ca3e73e929deedb72d8b0f6527a7d295da0ce29f82b70a95e15e32be74de90

  • SHA512

    28d4062a23301f8bdf64f90d5ebb710c7a984a6f3d5519a2c1044cfdcc2fd249f7befb29cf87f66c2b785b0c7950d6759aaf7d44a73311308d708a84d5f81f76

  • SSDEEP

    49152:sWdKAVWuJbeD3vPzSSfY6hhZ3IQl6pcc8HflKx/DRN5AL2TrByXdg34WUruTBrcT:JKA0uxa3vOCYehZGUEx/NNnrBmg3NLTI

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • Pass_1234_setup.zip
    .zip

    Password: 1234

  • D3DCompiler_47.dll
    .dll windows x64

    Password: 1234

    dc71769f237c0a3ba38879380c54a4e6


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Microsoft.WindowsAPICodePack.ShellExtensions.dll
    .dll windows x86

    Password: 1234

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Setup_1234.exe
    .exe windows x86

    Password: 1234

    88ed05598d45c16a126d02464dd4684a


    Code Sign

    Headers

    Imports

    Sections

  • binares/Microsoft.WindowsAPICodePack.Shell.dll
    .dll windows x86

    Password: 1234

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • binares/Microsoft.WindowsAPICodePack.dll
    .dll windows x86

    Password: 1234

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • chrome_wer.dll
    .dll windows x64

    Password: 1234

    11cfe52be448f6616d5059e01d25574f


    Headers

    Imports

    Exports

    Sections