bf744936c8aa55662bebab8ba8274b7aafee33d076fd302beedb1a1ba9241afd[.]zip

General

Target

bf744936c8aa55662bebab8ba8274b7aafee33d076fd302beedb1a1ba9241afd.zip
Size

1.4MB
MD5

863ef94b31e4f85fe4e41f964883230e
SHA1

d4a5d874cb437fb11d81eb046f634b320d6d800f
SHA256

383773413665eec384c069c249e4777e5f0c3477f61ca7a2ceada905ffd9e0dc
SHA512

7e45e67e822d5334364a98b8fbf06ba019f5d6c8a40b0c527247ce6747da33cb26a786985f5351b6adbebbf6e0d888b1e358f998c7b84fb1c7b2678b4267feca
SSDEEP

24576:KMdgWhfBv76pAjQRpkiyvNL4fR0eSiVOd7zkyEjZAjLsuNjUuhlK0F1:yWhh6Oj46voRsVfE1AjLsu7hv1

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bf744936c8aa55662bebab8ba8274b7aafee33d076fd302beedb1a1ba9241afd.exe

bf744936c8aa55662bebab8ba8274b7aafee33d076fd302beedb1a1ba9241afd.zip
.zip

Password: infected
bf744936c8aa55662bebab8ba8274b7aafee33d076fd302beedb1a1ba9241afd.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ