db461c6b6d29058d1fd411eb653bf8b7280dfef43829dac1f8e58d1ee59ff71c[.]exe[.]zip

General

Target

db461c6b6d29058d1fd411eb653bf8b7280dfef43829dac1f8e58d1ee59ff71c.exe.zip
Size

4.7MB
MD5

985f64e0e8353577580b9e19f8aaae37
SHA1

0bf6ade12985298ea1f5facfda13375d1135cb28
SHA256

5ab2239b431df63d354895cf8c3995e14abef45efbee7ca4eb3da2dd5380b05f
SHA512

4bdffedc0cfc1fba363b11db20f4de1fa3a64af7ef1a822564fc9360cd3a75214105bee1270cb8afb64a7b1f097a50f761ee048f3d8cd6326162b070f46cd4ce
SSDEEP

98304:UnDFAPV5sRH16bzbZH44jEdJOxyfjgYsF9x636/fq:UnDFAPV5gV6rZH4dIyAF6ui

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/db461c6b6d29058d1fd411eb653bf8b7280dfef43829dac1f8e58d1ee59ff71c.exe

db461c6b6d29058d1fd411eb653bf8b7280dfef43829dac1f8e58d1ee59ff71c.exe.zip
.zip

Password: infected
db461c6b6d29058d1fd411eb653bf8b7280dfef43829dac1f8e58d1ee59ff71c.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6.8MB - Virtual size: 6.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ