95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21[.]zip

General

Target

95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21.zip
Size

252KB
MD5

503f8405089e7420b0a51cd0918122ec
SHA1

ff1905c3d7e266fe10f118dbc6400b92aac8c4a2
SHA256

09e40036081e4670276d6a84ab39abae4910478962a04bf329a3e3aa516f27cd
SHA512

511aa272952efff239a74524107ef649cf8e84b76723a7ff709026514e79ba3afe836f6529babdd407caa4e9f178dadf76755b36c004aa83c66fc4674da69771
SSDEEP

6144:N9Y62Y4IJpY98FQ4zGu59gAeElQb8NTQaxT1Rms:Vxp5+uxGuDQaRTv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21/95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21

Files

95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21.zip
.zip

Password: infected
95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21/95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 12KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21/pcaps/95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21_VirusTotal Cuckoofork.pcap
95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21/pcaps/95d9c1ff255b52035da3e2ff521f3f0fbb8be117ef6b1e64723e825c79b0de21_Zenbox.pcap

Sharing

General

Malware Config

Signatures

Files

Password: infected

Headers

File Characteristics

Sections

Size: 12KB - Virtual size: 32KB

Size: 5KB - Virtual size: 8KB

Size: 7KB - Virtual size: 24KB

Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 20KB

Size: 512B - Virtual size: 4KB

.data Size: 232KB - Virtual size: 232KB

.adata Size: - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 20KB

.data
Size: 232KB - Virtual size: 232KB

.adata
Size: - Virtual size: 4KB