53942cba94dd748b96154d30cf1961cd728a7ce0c18331ebd2603ac1e4bd2455[.]exe[.]zip

General

Target

53942cba94dd748b96154d30cf1961cd728a7ce0c18331ebd2603ac1e4bd2455.exe.zip
Size

4.3MB
MD5

231f17aa7a83735b002f489df14977f6
SHA1

7ae751223a99ea36e535ed04de6b8aa8ca743732
SHA256

279b1fd9e901825b6e003cee3a30db3103fadc8e11c1cd771688814c06db0df1
SHA512

54efa1c764b1ee7c6917be565e8a3d9a3a34eb3c02a87b9e6214c664889e7f3acf30153f30cbe2e4323c3fdd016f691cafe0a14f712cbc384977fd230003fdab
SSDEEP

98304:DuO7+9BHTKPH1bx0a+76q+xC6spZZXt1imThaA36Eo80Hu:6/Kv3l46qQCrVviUxXoRHu

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/53942cba94dd748b96154d30cf1961cd728a7ce0c18331ebd2603ac1e4bd2455.exe

53942cba94dd748b96154d30cf1961cd728a7ce0c18331ebd2603ac1e4bd2455.exe.zip
.zip

Password: infected
53942cba94dd748b96154d30cf1961cd728a7ce0c18331ebd2603ac1e4bd2455.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5.8MB - Virtual size: 5.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ