ldT64t9oRzT0tOf[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ldT64t9oRzT0tOf.zip
Size

477KB
MD5

e2db214569c7ca74e550e8c2b826061f
SHA1

d7b5c9958552fc2fed90b332d0d81de90227cdca
SHA256

a68477c280f9256540d2fee4b8d3ceb2da2292b1a2f8d36665b46f498caeea1f
SHA512

18f7cb588d99cadad3313af713c67a6bf6a095dfb8d83a9b9d46f489e7f27ced34aa4a6f5dbb4d8258250050815f3278a03176aff3b236f96a0fbd909223c6e1
SSDEEP

12288:kjpirTGP92py0Oaf4lWOhGwfu3HbcOsIb:OpaKP9TufCbUHZb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ldT64t9oRzT0tOf.exe

Files

ldT64t9oRzT0tOf.zip
.zip
ldT64t9oRzT0tOf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 659KB - Virtual size: 659KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ