79f66b73c99932b8d9c7c6797380c30c0e5ce22b7dc902dfee69e27691271898[.]exe[.]zip

General

Target

79f66b73c99932b8d9c7c6797380c30c0e5ce22b7dc902dfee69e27691271898.exe.zip
Size

137KB
MD5

9a91e3088c8e67056d5eabc7a134f79d
SHA1

851411b82881120f037131bd0025d611ce9e68df
SHA256

36cdcfc84420454ebb3f11dafb81137793ea989b0c961cf3b728fd5d1a84b98b
SHA512

bd0fc641546ce9d3d43121b107742aca264a47c6e8c583040c87e1239487f9fe7fbb615dfb07997adef9382180e124c269f3df5e1292e618f1f848d3ea844478
SSDEEP

3072:lQUdJ2weph5h0g3jZ0AlJrKSy5bkfwODAhSwyaz6:lRuphUk1jlJXy6fwO8hSK6

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/79f66b73c99932b8d9c7c6797380c30c0e5ce22b7dc902dfee69e27691271898.exe

79f66b73c99932b8d9c7c6797380c30c0e5ce22b7dc902dfee69e27691271898.exe.zip
.zip

Password: infected
79f66b73c99932b8d9c7c6797380c30c0e5ce22b7dc902dfee69e27691271898.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 121KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE