58910158d20d2e79046f9071b082b2cc3a443156cb48ed3faa7e9e326d955157[.]zip

General

Target

58910158d20d2e79046f9071b082b2cc3a443156cb48ed3faa7e9e326d955157.zip
Size

264KB
MD5

4d79276aa4d2b58c8c42f0e96275314e
SHA1

abce36a88c8c8f7a24f984b434f6f9af7d96a7db
SHA256

11cb92abf2a72d58d0695f7fcdea10e891f48449a01f8323526fd5ee639170fe
SHA512

723d5cab37a4dd3f7aadcd39d1878a9cf6cb6ca157c9b1662776ace72f672f8b596712759d14d9ad172dc3578800023c7eeac89d06a0035800d6f9e2fc6f8d96
SSDEEP

6144:4538fxSqdfeVxNXX8VCyp2ev7uFqR8ZGI6qfAOlrIu:4538fzfwxxX4Cyp/v4VfAOlp

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/58910158d20d2e79046f9071b082b2cc3a443156cb48ed3faa7e9e326d955157/58910158d20d2e79046f9071b082b2cc3a443156cb48ed3faa7e9e326d955157

58910158d20d2e79046f9071b082b2cc3a443156cb48ed3faa7e9e326d955157.zip
.zip

Password: infected
58910158d20d2e79046f9071b082b2cc3a443156cb48ed3faa7e9e326d955157/58910158d20d2e79046f9071b082b2cc3a443156cb48ed3faa7e9e326d955157
.exe windows:6 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 262KB - Virtual size: 262KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
58910158d20d2e79046f9071b082b2cc3a443156cb48ed3faa7e9e326d955157/pcaps/58910158d20d2e79046f9071b082b2cc3a443156cb48ed3faa7e9e326d955157_Zenbox.pcap