6d457d7aa7dd127dd8c00b4d29c42153[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d457d7aa7dd127dd8c00b4d29c42153.zip
Size

1.6MB
MD5

ece4f46281f65de70756bcfaaa8c286b
SHA1

e364e87f036a694532abdb3180561e6b4c514882
SHA256

9b036f2e5b5f05d2986917243a6b1fa4d74794df4e8d8eac1c3828901a8085f1
SHA512

893354551cbb68330b09c255403af94b8da0e82fe73e82bd35746571488a7e7a2a8a4c11ef44ac841ebd54665e3879ded001c989ec49187f82bda56a3f589919
SSDEEP

12288:UCGiTeaYreJc6RDwYILncOqt6bf6gmMYfY8fq/hXmdk+nV3W4056D:UC7eaYrCc6RD9ILncOgu4Me4hXXL4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/6d457d7aa7dd127dd8c00b4d29c42153

Files

6d457d7aa7dd127dd8c00b4d29c42153.zip
.zip
6d457d7aa7dd127dd8c00b4d29c42153
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 535KB - Virtual size: 534KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ