092fc76f47f2416aae27b6383ebcf79b1da9fb55b1c3f6a178c3fd6d9e2d6c04[.]exe[.]zip

General

Target

092fc76f47f2416aae27b6383ebcf79b1da9fb55b1c3f6a178c3fd6d9e2d6c04.exe.zip
Size

2.6MB
MD5

ee1138a512dfe2577734879c2a1cbb95
SHA1

fc5c9e8102290efd5c3de447b1e2d4c9fac32f6b
SHA256

9c98247e127e0372b6df8fbc371707f5e1e65cfb85e4c89ddc28f046a8497cc8
SHA512

57d7109e1b16e2bb88be9e391fc6aeecd7b361903586300f276e4c0747aa99e3caf5a84da7519a555569cd6507ff450a024c205c75a44fae7502e7f654ff1097
SSDEEP

49152:TNkaUfUxCFfn1sSZLqqddloVPwwWEcdRanIinfhnT8uf4OG8km0:TSazMaiLB2RqEcdgznT8t8kr

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/092fc76f47f2416aae27b6383ebcf79b1da9fb55b1c3f6a178c3fd6d9e2d6c04.exe

092fc76f47f2416aae27b6383ebcf79b1da9fb55b1c3f6a178c3fd6d9e2d6c04.exe.zip
.zip

Password: infected
092fc76f47f2416aae27b6383ebcf79b1da9fb55b1c3f6a178c3fd6d9e2d6c04.exe
.exe windows:4 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 7.7MB - Virtual size: 7.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.enigma1
Size: 128KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 296KB - Virtual size: 296KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE