12042228468[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12042228468.zip
Size

1.6MB
MD5

2cc9452da181a32161d9e9db07ac0f05
SHA1

27a6050aea4b05c815714afec335bae636be0b57
SHA256

f4a43423c059681b8f23a0c40ec141e1933edb4b356eacfced75aa71a8cef8e0
SHA512

66d851e37d225d23202570d6d40b65fd3e3978036b22b0fcf1fde0b2ba363b71eeeb260e9e615f8ec31817880f19885c4d458ee201135a02f4fa4473cfa3b533
SSDEEP

49152:2PVoKvuKrR8wxk7RQ4pmfcCSmkqV2v1lkB1kJLz8:2PqKfNxIQBwrqVG6BqJLz8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/aa6a2579ddcc18d2418d4d466964a572ed609252cfe722ebc627ad66d31319b6

Files

12042228468.zip
.zip

Password: infected
aa6a2579ddcc18d2418d4d466964a572ed609252cfe722ebc627ad66d31319b6
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 399KB - Virtual size: 399KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ