malware1 (1)[.]7z | Triage

Sharing

Copy URL Twitter E-mail

General

Target

malware1 (1).7z
Size

1KB
MD5

e6387bbada8449d50a8aaa8e6fd54380
SHA1

5cd91eab0f5d08e9fb704c9fd153ff329e16a8b4
SHA256

d05d6bf6f9eef74303105e18b3284bfe496b6c53d4d8a75d10f60804f6a87f13
SHA512

b9b1c3bd78c64e42db21db02ced7fc3f961334571fd0167e766645245289d643dbf05f00c7066fb4208dc7473b621c33ab60a7a78f666e9ea5aae1a069144ac3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/cmt118courseworkMalware.exe

Files

malware1 (1).7z
.7z

Password: malware
cmt118courseworkMalware.zip
.zip
cmt118courseworkMalware.exe
.exe windows x86

ad10feef4f139a487ecc69df3996fb79

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WinExec
GetTempPathA
GetWindowsDirectoryA

urlmon

URLDownloadToFileA

msvcrt

_controlfp
_snprintf
_exit
_XcptFilter
exit
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3

Sections

.text
Size: 4KB - Virtual size: 636B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 578B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 156B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE