ae1e6cd0d38862f72eca6abaad3b628f79ae5cd6e7aeedf7449d086c6a1153ff[.]exe[.]zip

General

Target

ae1e6cd0d38862f72eca6abaad3b628f79ae5cd6e7aeedf7449d086c6a1153ff.exe.zip
Size

4.0MB
MD5

ace75b795bd4c21783aedc96c4376964
SHA1

4323f6fc103119d8c99137b6da42001314aba494
SHA256

d46607adb3c629a00d4bb4910d9ba5498622f66689662d4c529b7ed05f3f65fe
SHA512

d2657f884a6e2fb09663ba93903e0980e002c14b2c3956275b75f7343a12a3b16163dc765ddfb38c155085efccf4ce9d3e6d3f1ca9fc6286ce9efe9ed2e352f4
SSDEEP

98304:kiIAq1xBjM/bCQkoWP1BV4EXjF9rq0z5LnelLK8zoaCJg1VATcA:qAssWQkoqtNXjFVzVniK8zbC/cA

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ae1e6cd0d38862f72eca6abaad3b628f79ae5cd6e7aeedf7449d086c6a1153ff.exe

ae1e6cd0d38862f72eca6abaad3b628f79ae5cd6e7aeedf7449d086c6a1153ff.exe.zip
.zip

Password: infected
ae1e6cd0d38862f72eca6abaad3b628f79ae5cd6e7aeedf7449d086c6a1153ff.exe
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.code
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 566B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.enigma1
Size: 3.9MB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 260KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE