4e55bf3411cd6d4454fa2f57731c4dd80c4e7e871754cbe06f1114ff27e7834c[.]exe[.]zip

General

Target

4e55bf3411cd6d4454fa2f57731c4dd80c4e7e871754cbe06f1114ff27e7834c.exe.zip
Size

317KB
MD5

af4e265d9178c5e03c20a2e403a04fd3
SHA1

2c455b6d3a11863019d0c79e5128213fa81aca95
SHA256

f1e4d32f756a107af18c3de7274480293051d31fd2bcdee916e915e87eda28dc
SHA512

ce380c12b5f71226a851197e463630b8122394ef715c6fb7cf5ce8ed0959130964454ab463e42f48734fbb034d08e9effd3b8e6c614ab788824fd2f99318598a
SSDEEP

6144:g+D+StdIw3GZoRxReaJi5o2uLaAby/jDSXnnHcOmNG+kl+7cwznm6:gm+drZw+aJi5o3mAbajeXnHcOmNb9m6

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/4e55bf3411cd6d4454fa2f57731c4dd80c4e7e871754cbe06f1114ff27e7834c.exe

4e55bf3411cd6d4454fa2f57731c4dd80c4e7e871754cbe06f1114ff27e7834c.exe.zip
.zip

Password: infected
4e55bf3411cd6d4454fa2f57731c4dd80c4e7e871754cbe06f1114ff27e7834c.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 481KB - Virtual size: 481KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ