Static task
static1
General
-
Target
10134911737.zip
-
Size
160KB
-
MD5
d6e239a51cbdef60e43bbf542357f9e5
-
SHA1
35c993bb12213036838e0cbaa60ca47f80249a75
-
SHA256
f3bbc56eb4dbf2bf84c40fd926a232c2f0c8beace14e7ed61e7049db48961f6e
-
SHA512
4d6cd35584cdf55c78e2878459271a85bad1af7200a5a1b24b33aff3f9d60eeadacf38e1e1f156bd29ad03cca5566036e3a6c05478a1a1690cebabb2f1062a74
-
SSDEEP
3072:f3xfWYofIVGQdFq7l9s3aonw0a5KXhOdJGvFoCXyYKkNoYrWJL/cUV3wHB:fyRQ/4lsH8MwGvFX9NoxJLP3wHB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/2cb42e07dbdfb0227213c50af87b2594ce96889fe623dbd73d228e46572f0125
Files
-
10134911737.zip.zip
Password: infected
-
2cb42e07dbdfb0227213c50af87b2594ce96889fe623dbd73d228e46572f0125.exe windows x64
Password: infected
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 26KB - Virtual size: 26KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 269KB - Virtual size: 269KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ