0c3993306fc8aa9fb74df5a0a611ae8c71be788d6d588f7ca26623ab522deed8[.]zip[.]zip

General

Target

0c3993306fc8aa9fb74df5a0a611ae8c71be788d6d588f7ca26623ab522deed8.zip.zip
Size

1.5MB
MD5

e05c91a69f8bf773389611b6c5a8d49e
SHA1

c76d5e96d98583250cfc6133481b27afdffe6a45
SHA256

977fa6ec1caab2918db1841a9ca5af733c8e4a7eded8a12ca6ab59f1b2b75bd7
SHA512

24ac6cb70d51ee8b3975254af6e885492fd87d83e4284d43e1bd0f8ca990c0ac06b1d5da03891ca5b3ea8da5c7a488178f4efbb8cc27399abcf0a672c92c7634
SSDEEP

49152:67jPxJB9VCsalBZi380jF76zhCe/tEevxbfVpu:yjPN9VCF3i3V6we/VPu

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/MachineSetup.exe

0c3993306fc8aa9fb74df5a0a611ae8c71be788d6d588f7ca26623ab522deed8.zip.zip
.zip

Password: infected
0c3993306fc8aa9fb74df5a0a611ae8c71be788d6d588f7ca26623ab522deed8.zip
.zip
MachineSetup.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ