44eb4845c9ad4e2a4639c82d880cdc0b02b4859f6f0f5bdec5b9ce061f4305de[.]zip

General

Target

44eb4845c9ad4e2a4639c82d880cdc0b02b4859f6f0f5bdec5b9ce061f4305de.zip
Size

2.3MB
MD5

b2d0352a06da11a4508c071de96d8e10
SHA1

77d0a29b988b8ed7f5de1c7419f45ee0c2a07b85
SHA256

de950e060ac257fdbb580448329256b2e150bfff4f6c9ff3bd81056dd697150f
SHA512

464d46aeaf978ac93aa2d2ca63644c3523b569a5028dc7b9d4c5891313211f9634d5026882221af9e29f0051821685fa394adb9f783340b9edffda71b428d083
SSDEEP

49152:rUi6c+5C6iTgaJ/4Lx85ZF+hCXIFtk3HpX1sIeb:h6ck+nH+hBkbs5b

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/44eb4845c9ad4e2a4639c82d880cdc0b02b4859f6f0f5bdec5b9ce061f4305de

44eb4845c9ad4e2a4639c82d880cdc0b02b4859f6f0f5bdec5b9ce061f4305de.zip
.zip

Password: infected
44eb4845c9ad4e2a4639c82d880cdc0b02b4859f6f0f5bdec5b9ce061f4305de
.exe windows:1 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ