12382449187[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12382449187.zip
Size

18KB
MD5

c81f335740380fa61de3c6b4a71720c0
SHA1

1c186f0fabefefcc5daa2d26d362dabd09062db9
SHA256

64ab99e84ce6e4b69ccb9215ba8640e58e7f67ead0e7b890a1947642e5506d54
SHA512

04a2fc346d8ae2e63cda9ec9496526700c95367cd39d89dfdfc91974a385fb188d78f4239769b044602a7146e621cf1cc208f1d6b63e5325ac219f2227c3f06a
SSDEEP

384:f7HvMsn7wSpu7ea2seNE/a37SjAfHqPmote26RV2eEmKn:TPMsEtjAfqeote72eEz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/7b7959f2b2ac35e8c5fc03742b95e4a91ca9cf396789cb9a4751a1a22f9eaf32

Files

12382449187.zip
.zip

Password: infected
7b7959f2b2ac35e8c5fc03742b95e4a91ca9cf396789cb9a4751a1a22f9eaf32
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ