c65c00a24e57dc539ddb77694b4d3d31ae8a76c5f2a484bf716547938a296470[.]zip

General

Target

c65c00a24e57dc539ddb77694b4d3d31ae8a76c5f2a484bf716547938a296470.zip
Size

101KB
MD5

4bb768f3e1cbe21eade99da88d2e0cc8
SHA1

1e0a24ba686d9a8b8ff2d132f3045c32b3741690
SHA256

8712e850ef0fd48a6f1834dd7092c8ea1b03c3b376a365a593d9b872600aef5c
SHA512

fb37608e28f235f29c0302d3164bc6c3831a1c604007aae13df227ba8bde9db1eb4a7e1fa972870ff198037617ae4cec3d4fc636f9f9a22e6a39d41acd3f473d
SSDEEP

1536:eYt1DIFMACOrdqjFK+mjtDVAsdGkIZHGuOgsfaJmEKv5KWQYyMj/IDLqWj8vZxqK:XULluQKsdGkPuMaJmEKMiAvqvHqqh5

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/xn1i9x.com

c65c00a24e57dc539ddb77694b4d3d31ae8a76c5f2a484bf716547938a296470.zip
.zip

Password: infected
xn1i9x.com
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

f9
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

s59n4qd
Size: 101KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qhnhgx
Size: 456B - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE