10707466862[.]zip | Triage

Resubmissions

11-07-2023 07:24

230711-h8qc6agc2s 3

08-06-2023 19:31

230608-x8jypsae8y 6

Sharing

General

Target

10707466862.zip
Size

86KB
MD5

4078748ca30e860ea9798e91139af26e
SHA1

0dfb264861adfdde78631b702cc2d1f814ae5019
SHA256

78a21e62c116c16962cc173e9e405184390afe85504eec243fadf7060deffa3c
SHA512

846f8e3ecdf381790cc268105957d920505cf0bac339841528246f2593990be4b555513fb70a3c282575a21d37ceb35dae1d9f7abc8214d92f1fd70cfc26794c
SSDEEP

1536:Re1LNhIn3r5tb3cc5tkQfAYklRZNvXc9Bxhr9/bLEdN13ZqKgce6FBT61T:Z5p3dFAhlfNvyhB/nenpHIMs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/2e49c43c777b954fe434615de321e7eb369adca4f05b321fdb8a3e0443439cff

Files

10707466862.zip
.zip

Password: infected
2e49c43c777b954fe434615de321e7eb369adca4f05b321fdb8a3e0443439cff
.exe windows x64

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 424KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ