NUSD-Mod-NUS-Fix[.]zip | Triage

Resubmissions

29-09-2023 22:25

230929-2b1x6sfa2t 3

29-09-2023 22:21

230929-19rlqaeh8v 3

Sharing

General

Target

NUSD-Mod-NUS-Fix.zip
Size

155KB
MD5

2319b8d580e45f23d8c5f5a645ff6341
SHA1

c395ce887b2337c5af495c61fd1860716fe56513
SHA256

971a96fe8851a5fa422d52287e15c309bd3e792b8c2ebc83df46fa6dcf4eb43d
SHA512

a43d41881983b78ef9fd42c0fd477210b64db060756ea90218179857154a376d1756947a07c59dba2d089809a4b4b3d6f79f347748bf618a3c9e7c9f67d55016
SSDEEP

3072:8G6kv0miyz3I031La9XvzQv+0JYFw2vyaghRjlgnOlYg5VSxxVLes:j6pmNz3I0Qpkv7+wHagh8neYgX45D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/NUS Downloader.exe

Files

NUSD-Mod-NUS-Fix.zip
.zip
NUS Downloader.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 355KB - Virtual size: 354KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
database.xml
dsidatabase.xml