db7f7d34f640120b0e4f20039741e6bf[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db7f7d34f640120b0e4f20039741e6bf.zip
Size

1.5MB
MD5

8a32628f6f4f5457c49b1ba405e0300e
SHA1

c40c93e9400e7c293058a252e6662e979fa0b1c7
SHA256

32862fba4c8ddf4f93832c033744fdc4cf3d05861384af92d7d2b011153b2a89
SHA512

67251f55bde4fd2073f896eb0b3704ba37ddff244b0f4155096f858835ddcf1f8916344b5a90ad291e5e7d2efc760735c31d3d7717134bc60c49ebe22ecb4bca
SSDEEP

12288:zqZLFPiabtTYUxIvkLc8M7zFHpWzZQ0M01AhW8Uhu:wFPVbtNC98MTWzW901AhPKu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/db7f7d34f640120b0e4f20039741e6bf

Files

db7f7d34f640120b0e4f20039741e6bf.zip
.zip
db7f7d34f640120b0e4f20039741e6bf
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 514KB - Virtual size: 513KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ