OOJHG6B7cVYv5YX[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

OOJHG6B7cVYv5YX.zip
Size

630KB
MD5

18b12335e3816c8e0bd4e848481c4c09
SHA1

36dbda2234d3b911f3b6b4c28c448f69b0d209bb
SHA256

edff708fc8fb47bd60e83e14d6fddbfb71b2d8a5d81262e512501e57ab703e04
SHA512

3a8af9b7b896cb5d28640c39d2989c446889c2844c0eff1899eec3cf606ec155a0824cb32f7db7f5ddc64f654a5965d202cb71dea85f77c1242088c21935cb85
SSDEEP

12288:o7I80SJBAxvebjcuPING33ZX8DwlJ2vq8jkHJOlaiUjWja4p:oc85BAxebAbWpMDnq8uiUjWja2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/OOJHG6B7cVYv5YX.exe

Files

OOJHG6B7cVYv5YX.zip
.zip
OOJHG6B7cVYv5YX.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 943KB - Virtual size: 943KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ