f495912f42c2a1b78fc287925f2bd45ed1ee4ffe39aa9dfeac59e9a612846675[.]zip

General

Target

f495912f42c2a1b78fc287925f2bd45ed1ee4ffe39aa9dfeac59e9a612846675.zip
Size

1.7MB
MD5

80ebec763d0cc6de125ee08aa88b4529
SHA1

a0f22e8a621d61fa31067e82240db06773f2c0a1
SHA256

976ef69f27d529ad9bbe09ec7e9f4b361eb0702f1e1134dbcaa5a86e98126432
SHA512

fed58f2535be626a2bc0d32fdb00c296f6dd5636b31ec398eb761774f5d44179e7e82177bbe76126c04432769e1d7fc623fc8b6f38d1378ca07a559f1008d73c
SSDEEP

49152:gfAM2ONIIhKRJ/82cuo7EIfnCd9eHE7/fEkOJSFHHG:IAsJj2G7E4C2uPOJknG

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/f495912f42c2a1b78fc287925f2bd45ed1ee4ffe39aa9dfeac59e9a612846675

f495912f42c2a1b78fc287925f2bd45ed1ee4ffe39aa9dfeac59e9a612846675.zip
.zip

Password: infected
f495912f42c2a1b78fc287925f2bd45ed1ee4ffe39aa9dfeac59e9a612846675
.exe windows:6 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 492KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.symtab
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ