ad78d9087965e5aa7c53e161c0918d9e[.]zip | Triage

Sharing

General

Target

ad78d9087965e5aa7c53e161c0918d9e.zip
Size

1.6MB
MD5

16ff52a0034947bdaa556ea3b32c5674
SHA1

48f09c9a0cd1c6ba8e7d646d60b3c7f5c14ca780
SHA256

bb5bdf5545a265fe032b07dd547939f3523d7402aae14ac7ca1339fb604a2d8c
SHA512

209ccc37e157903f4e6b78224656db86df6a9aac3f1e43c6e4c467a455e1ebe3b6d7f5c3783fbf2d37a7c4b8aa974dc1d4230ea52e174669ef8afa43c051e3d4
SSDEEP

12288:hVHo7SVYQuf72Pakvw5awDZl+IUptqBuAZS+/UYmN:+2YxzjkvwcwDpasuA4xT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ad78d9087965e5aa7c53e161c0918d9e

Files

ad78d9087965e5aa7c53e161c0918d9e.zip
.zip
ad78d9087965e5aa7c53e161c0918d9e
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 514KB - Virtual size: 514KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 662KB - Virtual size: 661KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ