10557401262[.]zip

General

Target

10557401262.zip
Size

465KB
MD5

beba278992e7b9266c509101d4a5c461
SHA1

a3b5a5bf7f137ed8ac07d8fd0c7016f405379318
SHA256

5ecedc8a006ae047b6c57bce8b0617d0c70ee6ff3a5db6e113dc7cbf87c567d0
SHA512

028903eb62bb23c4172d84ea55f49c7884da12cd3aedbe31b17025df362bb3d4bcbdb607811a0cd6e8223b0615c26084454a91534f12999b3d5502ef6dd566da
SSDEEP

12288:IKow/zKyE6vNcCcSqVRfgsW8NRABv1LqoYQ3d6lFeXswlF9W:I0HWHfBmskiuN0

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/ORIGINAL.EXE

10557401262.zip
.zip

Password: infected
ea795e50facf17728930f77b6fa85342f42af0bab36a05521aad1d1eb61738bb
.iso

Password: infected
ORIGINAL.EXE
.exe windows x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 553KB - Virtual size: 552KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 64B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ