Static task
static1
General
-
Target
b2160d49f16699a220d28ce02f57bff30684818c628de40210e0359374908229.zip
-
Size
275KB
-
MD5
332a6dc56960d98e49956d1c6b68cd38
-
SHA1
28f9b66a9159821d921ad667ebcab584a6de79e3
-
SHA256
c540bdcbfe2fbe5d9b4e80077e560f64dd10854ee922b880a459ef6eb7db6aed
-
SHA512
3888f3e6dcaf0f669923f2ff50891b4e6272d7d38ac1ff087744f3769fcfb738bc2eb44ae78875077496fcf6bada6e2a232121f014d8e93c287369c8b5404c41
-
SSDEEP
6144:+HvslDiZixy8Pv/MX7CLRA4Muv2xl3FEg1CwJnwNtyQ:+HvsdiZmPCyuv55FVCwhwNtl
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/b2160d49f16699a220d28ce02f57bff30684818c628de40210e0359374908229.exe
Files
-
b2160d49f16699a220d28ce02f57bff30684818c628de40210e0359374908229.zip.zip
Password: infected
-
b2160d49f16699a220d28ce02f57bff30684818c628de40210e0359374908229.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 353KB - Virtual size: 352KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 206KB - Virtual size: 206KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ