1fe08319f850db556dfb9575e9e82555abff1213f244d52e69152ccc7dc84bcc[.]exe[.]zip

General

Target

1fe08319f850db556dfb9575e9e82555abff1213f244d52e69152ccc7dc84bcc.exe.zip
Size

1.6MB
MD5

112923ae94beedc92ad8612237b50920
SHA1

2fc30813b4d34a6cf662c301d9482e93d081e8fb
SHA256

5ebca90a02e95c356bdd9787d17f7326ca11260f842c60c1d89932314a6be3c8
SHA512

21471aa735713b2cd40ba7cb03c191aef8b5f6905596a1d3dd2376bf514774c42387389a113045b8e16101e43fc35238c0ed339af1ba7890d218cde871b2d8db
SSDEEP

49152:gJ9upK8K3ECFPcJfNriEbLwMOw9vY+cPYyiXvtIon0Hw:3pK8qlFUBiEPwMOsvY+RyiXvtZ0Hw

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/1fe08319f850db556dfb9575e9e82555abff1213f244d52e69152ccc7dc84bcc.exe

1fe08319f850db556dfb9575e9e82555abff1213f244d52e69152ccc7dc84bcc.exe.zip
.zip

Password: infected
1fe08319f850db556dfb9575e9e82555abff1213f244d52e69152ccc7dc84bcc.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 622KB - Virtual size: 622KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.drectve
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ