60e6f59031e28817a048f20bb06ec97638fa3ed189bf024742800f9066db0cb1[.]exe[.]zip

General

Target

60e6f59031e28817a048f20bb06ec97638fa3ed189bf024742800f9066db0cb1.exe.zip
Size

12.6MB
MD5

8a2d10b3e50e28a9d19a1da40bdcdfd4
SHA1

efbb7db4be97144399891545651a58381a27a4b0
SHA256

983cecabdd2ef55992269adb5801935ab5953af631729198fc9d84d8f6731a9c
SHA512

128a0414351e3d165c9b9a1fcc530d63a5499bff668a6a4762814f84144681281a2e043cef0bcace1833d2a777ba7a199f18f6d19d4e5d4538043f85b54844b4
SSDEEP

393216:yUhQ772+B46LPMzVo4CFNAViizlDHg9csui/kE:y732F6CVozutEui/V

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/60e6f59031e28817a048f20bb06ec97638fa3ed189bf024742800f9066db0cb1.exe

60e6f59031e28817a048f20bb06ec97638fa3ed189bf024742800f9066db0cb1.exe.zip
.zip

Password: infected
60e6f59031e28817a048f20bb06ec97638fa3ed189bf024742800f9066db0cb1.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12.7MB - Virtual size: 12.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ