2aafd0758ae39fdfff80f0f37489e0d1f0890739a27a9a414f0495a901e12d47[.]exe[.]zip

General

Target

2aafd0758ae39fdfff80f0f37489e0d1f0890739a27a9a414f0495a901e12d47.exe.zip
Size

1.7MB
MD5

4ef13c8a0a6f9b3e9e4b71621d4777b1
SHA1

675e657293673b305242ab34877e1bba2d8b403e
SHA256

643f026af08a54c19311c4d3605227f8508f7c6ce333e278fce5b88a7a8eeb61
SHA512

28b970683c5b29eba0b4fd33fe092db1897a27e3fafdff1eb66a545f48770db227df3f4d7046fca9327adae1ba60585863076dfeeb7476a2860d77f90effabe2
SSDEEP

49152:Au2l4I7EOCKjBCj0OtkdEbYQ5aL9ijOrjWGevfPqcR:Au2lYOCWBCwMkdkaZzGGefZR

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/2aafd0758ae39fdfff80f0f37489e0d1f0890739a27a9a414f0495a901e12d47.exe

2aafd0758ae39fdfff80f0f37489e0d1f0890739a27a9a414f0495a901e12d47.exe.zip
.zip

Password: infected
2aafd0758ae39fdfff80f0f37489e0d1f0890739a27a9a414f0495a901e12d47.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ