raccoon | 9865ae26f57a5b2de13f394059f402441399db9eaa25d5f52e2c5445b380411e[.]zip

General

Target

9865ae26f57a5b2de13f394059f402441399db9eaa25d5f52e2c5445b380411e.zip
Size

334KB
MD5

45bc9152198e26eabaea5c84e8846825
SHA1

f5fa91c747055fd3f7dd4b7f3f3da499e0cb61c4
SHA256

0ef82ca81254524be3d55b0a35fe67e595c6f110ec50cfbf606c94a44806b56a
SHA512

e0f9e928fbde567042d0e771e3170e45dd80ab87eb3d08e52c9d60db1a6075a9692b8b58d4aa0b9678c18c7b191b510928a76c33a810cbb94f3883eb1b8487d6
SSDEEP

6144:Ep2YI+V7/mSJAm2FZXXp38iEej2uZxMyt7JPbAdCKvtBzRq3SNlCB9L6:QPV7/muT2fnp38i1iuZGAAdHznoL6

Score

10^/10

raccoon

Family

raccoon

rc4.plain

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/9865ae26f57a5b2de13f394059f402441399db9eaa25d5f52e2c5445b380411e

9865ae26f57a5b2de13f394059f402441399db9eaa25d5f52e2c5445b380411e.zip
.zip

Password: infected
9865ae26f57a5b2de13f394059f402441399db9eaa25d5f52e2c5445b380411e
.exe windows x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 424KB - Virtual size: 424KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ