11859082435[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

11859082435.zip
Size

15KB
MD5

aa7ea0571f8162bdb7d3f4083e34b4f4
SHA1

b4b4b5abe18c997100d213bec724909a85419d91
SHA256

0f38593578dbee9115ecdad8d4a975328aa530b1753da435ca4ac58b8e334ff6
SHA512

c3bee3c48376efe4cc9d8b36e4b4c35d473e16016d73d88275ff78126999f9a8c4f2d359ef5579d4cf62e30b4d7cc7a1ed3936d1bbf0f44588c18de27d14d2c2
SSDEEP

384:jqvyHB0/cbh5O2CGoQ3Y1BDuTt+Powy+WCZuOhqo2kA8jG:eqwcnO23u1BuTPB+WPOELz

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b71aa5f27611a2089a5bbe34fd1aafb45bd71824b4f8c2465cf4754db746aa79
unpack001/da450c639c9a50377233c0f195c3f6162beb253f320ed57d5c9bb9c7f0e83999

Files

11859082435.zip
.zip

Password: infected
97bfc3f10bdd9ab9601cd503e5d1ee4a5cf8e687ebc26ab888c21a906b233ab8
b71aa5f27611a2089a5bbe34fd1aafb45bd71824b4f8c2465cf4754db746aa79
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 156B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
da450c639c9a50377233c0f195c3f6162beb253f320ed57d5c9bb9c7f0e83999
.dll windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 156B

.pdata Size: 512B - Virtual size: 108B

.rsrc Size: 1024B - Virtual size: 1000B

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 512B - Virtual size: 164B

.data Size: 10KB - Virtual size: 9KB

.pdata Size: 512B - Virtual size: 84B

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 156B

.pdata
Size: 512B - Virtual size: 108B

.rsrc
Size: 1024B - Virtual size: 1000B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 512B - Virtual size: 164B

.data
Size: 10KB - Virtual size: 9KB

.pdata
Size: 512B - Virtual size: 84B

.rsrc
Size: 1024B - Virtual size: 976B