01[.]zip | Triage

Sharing

Target

01.zip
Size

1.2MB
MD5

d7404a726e774376e12ebe3bb3a18288
SHA1

e83d6aa7e84ff465f61c9f4b10f47e96a19e8818
SHA256

a9a91262c5568d978b108ed2318f31446b18b0164be02ba0380a5e0c72cf34dc
SHA512

1b232d7c4f46d4a2a52f419cda68a7254b95128dd4b73aeef1047d3e02557d7ef1dc16288695e1a029c9b3c4c78d8dba7c2298fd0775d2847cbe16e2a71d9ac3
SSDEEP

24576:64eCp4tBHEADZk6DejZjpDFMhKNeAGt7uAuguYWuYcoYN/BRhcTzZrxclP4+:6Bny6DSZFMcNe/7u3/3urouRhczZrSg+

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/_________ _______ ___ ______________ __________ _ _____ ___________ ______________ _________.exe

01.zip
.zip
__C_ CK P_ ______.docx
.docx office2007
___ __.png
.png
______ _ ___________ _ _________ __. 164_ 170_ 183 ___ __.rtf
.rtf
_______ ___ ________ 12121313.odt
.odt openoffice
_______ ___________ (_________ __ ______ _______) _ _____.doc
.doc windows office2003
_________ _______ ___ ______________ __________ _ _____ ___________ ______________ _________.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 333KB - Virtual size: 333KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
sysinfo