765390e138f302a7838f75b5c1e416b5376006b786bb3fd101836ba8509e229f[.]zip

Sharing

Target

765390e138f302a7838f75b5c1e416b5376006b786bb3fd101836ba8509e229f.zip
Size

777KB
MD5

c90ed8f81ae986b5c5696889aefe5e1e
SHA1

16bf0b05870c3684b90240d167b6f8ebeff54f61
SHA256

83f5cb57c2191a507d867453d2a36d14be441529b0a5236db0c8b251c07307cd
SHA512

373e9eeac79606933686920130a52eda3818589d9a8a38b0021a76fccbbbba98bdd3f3bb93ec4db1dc5d0cfd297b45253694146d945bd8ada374080d95928a02
SSDEEP

24576:lVscRiKU3wABPWJhnLKtyNgdGLY6ymqc5mgWw8T:lmJRAnhLsyJcHcAgWP

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/#05-PL20200624005.exe

765390e138f302a7838f75b5c1e416b5376006b786bb3fd101836ba8509e229f.zip
.zip

Password: infected
765390e138f302a7838f75b5c1e416b5376006b786bb3fd101836ba8509e229f.img
.iso

Password: infected
#05-PL20200624005.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 810KB - Virtual size: 809KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ