10697545024[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10697545024.zip
Size

428KB
MD5

61b724dde44ffaa740454b365cf9c2e6
SHA1

f4cc66e5cff3e541bf8225abf349c5a882e01cfd
SHA256

52e6b280d007e7668ede06e383e594fcb5f0106c476baf1ed0992a327a349901
SHA512

423de711f83df9d23c9c914e1a4ea3149ea5a392307fe1b994725ea8bcdf9a076256a9ca059d92d7fda41d6c0f2fb068970948027b1fa722ec7922b13abf4bc4
SSDEEP

6144:EqsAV5kg8aybg+/qJJoaCemSMvwOkTxElPsIlRpi9DV2ISZXfaT32aV8x4GjJmT:1sAA9aybgQV1/SkS9O0IF502x6T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bd59ec7b7d1683b6a78596fe6d80aef78ddb419280d7c503e4de2db0df579437

Files

10697545024.zip
.zip

Password: infected
bd59ec7b7d1683b6a78596fe6d80aef78ddb419280d7c503e4de2db0df579437
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_SYSTEM

Sections

�`|�hu
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

�fw��
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�phMx
Size: 26KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�fv��Ϟ
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ