2079381640[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2079381640.zip
Size

533KB
MD5

878f6bb6287058776fc8e3850c7fbcc8
SHA1

ebbaf7e1d5b40650be18f26ad314fe3e574e2ff1
SHA256

32bca6ba86dae7cbb0f603c88ed2a4becd749eaf1d80611169d231f47aba72bc
SHA512

51c1883fab680a6e77b99a176efce6727787ee24f8bb2a0331b72e08e46446dd7c365f645013038446922e36649bd7a9a99a5dc303a90ff7e16f9c7f3837c1cb
SSDEEP

6144:GQ+zHLzmU5aQHI7zw1/Yu9Zy9wYH599KKrw16OsY7a9oFmAnE0/9I0MJ1IIygHhH:GPz71I7MTm997rw1GguIIL6i7tiA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/2079381640.exe

Files

2079381640.zip
.zip
2079381640.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 560KB - Virtual size: 559KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ