24cca151b35ed6085ccca9fef64eb1046d8efa93b7d45c80f141544e90ef1277[.]exe[.]zip

General

Target

24cca151b35ed6085ccca9fef64eb1046d8efa93b7d45c80f141544e90ef1277.exe.zip
Size

3.0MB
MD5

4f5316329c2c0d89a4c06e12f4be7f48
SHA1

a891ed8bdf09aae62eebac5f70a60f1d7fac8770
SHA256

8b0f122add5a33b1dd7bf544cc0e5cd1236a682641fe512f35b040bc6b35efcf
SHA512

0c296c45132cb64b549838c983f5238284e56b0782ee15927fbc9646743fe7a9f079904c2a5137a0fb362670786a30ff9f4119b02a57c17cddbd1bb5bac7d4a5
SSDEEP

49152:xUQuazHifiKkhv1fGJ7jXYR1Op1+Qs/1TYXKtuyCiQMOXfROvw3AjXP4RInqN5rs:xUQz4K1uZjXYR1OiQs/1TZuxfXSqnB/O

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/24cca151b35ed6085ccca9fef64eb1046d8efa93b7d45c80f141544e90ef1277.exe

24cca151b35ed6085ccca9fef64eb1046d8efa93b7d45c80f141544e90ef1277.exe.zip
.zip

Password: infected
24cca151b35ed6085ccca9fef64eb1046d8efa93b7d45c80f141544e90ef1277.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ