5347f53d9f772168da596163adc902ccff04709e3d91b134fc0caaee231e1ce0[.]zip[.]zip

General

Target

5347f53d9f772168da596163adc902ccff04709e3d91b134fc0caaee231e1ce0.zip.zip
Size

1.5MB
MD5

1e0e9336de88e0a7172ca938ceca1205
SHA1

f4cb93d075cf8ca1372955cb5772a834c08c5f1a
SHA256

a36fa81edc7ec7980c8134bffb3d789c0a66372601bb511bc89207d29f774e44
SHA512

dacdd35b6f99c9cf1586883dc6da6a9509a6e2c70c51f460674c3bfea1285f5b051a991294b88e3f5cb0716621a089d6d6a21fc2103eb078db5e77ab95a8b49f
SSDEEP

24576:L3wdo89lyvj7E/yls45+1PgkH6osCzUuOoKdwg9weAqfBhWqUWXVpxBtZb2UpTQ+:Lgf9M33lslg8CyrF2lAwBhW7w/rRibAh

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/MachineSetup.exe

5347f53d9f772168da596163adc902ccff04709e3d91b134fc0caaee231e1ce0.zip.zip
.zip

Password: infected
5347f53d9f772168da596163adc902ccff04709e3d91b134fc0caaee231e1ce0.zip
.zip
MachineSetup.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ