e6c68d5aebde1da285975801a26465882250940bbd124f1887d59af0251c82e3[.]zip

General

Target

e6c68d5aebde1da285975801a26465882250940bbd124f1887d59af0251c82e3.zip
Size

668KB
MD5

5a6342580e4bef0c1e7639d0be540f19
SHA1

f7ebd7e36f5cadf4c242b0ad5b0db736584a4559
SHA256

715cb1ccff3cd92b0efe7a49cedb4b8dffe10adf0a110c0121d4097378be3ae4
SHA512

0860b275e19adedc15339c0e4f727accc3329fa628a62a47ff59426adfb98af5e56bff016989a20fd5428d1558ac6c34b5cb7d813dcb17ef525b47a4bbb48a8f
SSDEEP

12288:1Om4dtLCPrftRqMzdcaTclY5HhyneKUE9rkT418UrDwwnDqlnEELKbThUeG/pCm:1Om4vLCPVzZ7BhynIQOM8UYwnDqlnEfk

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/e6c68d5aebde1da285975801a26465882250940bbd124f1887d59af0251c82e3

e6c68d5aebde1da285975801a26465882250940bbd124f1887d59af0251c82e3.zip
.zip

Password: infected
e6c68d5aebde1da285975801a26465882250940bbd124f1887d59af0251c82e3
.exe windows:4 windows x86

Password: threatbook

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 679KB - Virtual size: 679KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ