4094dca5e6fdab579f3e7b8d37ca40c3e6cb7293b5272b329107c08943d23d06[.]exe[.]zip

General

Target

4094dca5e6fdab579f3e7b8d37ca40c3e6cb7293b5272b329107c08943d23d06.exe.zip
Size

30.6MB
MD5

0fbeb8f82a02072003f4f4b2eea89618
SHA1

9f6330808475899c0c4d6b81530f8efaa203de3a
SHA256

29608a40d923c4558987b362c464e6468e66f54ee5a9863a56165b9d0974587e
SHA512

aa4be8d0e86548d466965091f8664c365ec867876d8892e0e3546863ab73fab3eb17e8484fb38c31003f3aa405d42ce9ce7cb0c8c16a74e48ad86561f694fd9d
SSDEEP

786432:U49l0Tj/IKsQ6JaMPohUOpqATFy2aXAV/uhXa7DKW6hu:Uk0nsmMPXyrcA9uhq65U

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/4094dca5e6fdab579f3e7b8d37ca40c3e6cb7293b5272b329107c08943d23d06.exe

4094dca5e6fdab579f3e7b8d37ca40c3e6cb7293b5272b329107c08943d23d06.exe.zip
.zip

Password: infected
4094dca5e6fdab579f3e7b8d37ca40c3e6cb7293b5272b329107c08943d23d06.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 31.1MB - Virtual size: 31.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ