b23bf5185d3f9fe9743168b3c5d20e438ba22aaff6d88e600327292a261ea9e1[.]exe[.]zip

General

Target

b23bf5185d3f9fe9743168b3c5d20e438ba22aaff6d88e600327292a261ea9e1.exe.zip
Size

4.3MB
MD5

d5f6e287e8569c9b1686069cd9793277
SHA1

70f7a854ecc9f1b578f598aec2c0365eb13bd6f2
SHA256

5dc4e066fa876630d67a4b3d326256ffce1f85f3d714ca84c0af7bc1553d02db
SHA512

0105619160af214a386abc3c7ab9532344f68eb8c1f6948dbac4cde2d424c7900be68b00fcf74e42b1815a64dc0e1beb7596cd196acc1dcb6d0c5a67e7b20e3e
SSDEEP

98304:E1xkyqKgiFEllhz+4UuVchXNBpoLWsx1LAdHMyr69NMCT:E1xkw9An7Umch/qWciHTr6jJT

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b23bf5185d3f9fe9743168b3c5d20e438ba22aaff6d88e600327292a261ea9e1.exe

b23bf5185d3f9fe9743168b3c5d20e438ba22aaff6d88e600327292a261ea9e1.exe.zip
.zip

Password: infected
b23bf5185d3f9fe9743168b3c5d20e438ba22aaff6d88e600327292a261ea9e1.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5.8MB - Virtual size: 5.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ