Latest_Free_Filez_Passw0rd_4321[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Latest_Free_Filez_Passw0rd_4321.rar
Size

4.9MB
MD5

7869f2b05108b600c6c20788e4fa1039
SHA1

0607c84c3e433888103d23d4e855258c5ef8341f
SHA256

0dc79e0eadbc0cb0f306b648b10b58ad2d7dfefe205ab75659110bc1e08bcfbb
SHA512

7a20472f4ee3f550cc5a6ffd7e7d8daa654a117188c0a1201e355ced7a409875391f70ff3200a4dfff5fb61a396246315a9acd26e26f548cf5d8cf4a4ac6e5dc
SSDEEP

98304:0sniXdo7FFuT1C7w4AgGvcg5/3tRBzqZbuHGHVEC/pVBba:0situFFC0wtUg1TEbuSn//Fa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/freekeygen + setup.exe

Files

Latest_Free_Filez_Passw0rd_4321.rar
.rar

Password: 4321
FreeKeygen.txt
freekeygen + setup.exe
.exe windows x86

Password: 4321

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 680.9MB - Virtual size: 680.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ehxtbngv
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pceehjtw
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE