2f50ea4dd2b4a90622d1ba9d9b68dd40f1941f3a913b5d449100055a21552bf4[.]exe[.]zip

General

Target

2f50ea4dd2b4a90622d1ba9d9b68dd40f1941f3a913b5d449100055a21552bf4.exe.zip
Size

91KB
MD5

d0e4a110a7fdc357c5f6d7b199f559d7
SHA1

76fa02c0ca67ed298805fd7db2bff583eb744ae9
SHA256

b1abe7c99f44b57c76d15d0a45237c16cf1252360ea2eb88da8ec49cbbee2cbd
SHA512

bb0d26c421f0ec7be2260f6202dca8aef02ee178fa6b04bbec902c9cddd20d266a845f0d68fd12abd253985ee1754ff92a1502476a0bc133651b653722c5b8ae
SSDEEP

1536:caWW4Fp72mF58ffAmFetYa1SzC8uEWu9rDPU7qalEhL/i39SZeb555PRIN7app:+PHEKtT1D6dr7U+alEh7iNkA5ri7aD

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/2f50ea4dd2b4a90622d1ba9d9b68dd40f1941f3a913b5d449100055a21552bf4.exe

2f50ea4dd2b4a90622d1ba9d9b68dd40f1941f3a913b5d449100055a21552bf4.exe.zip
.zip

Password: infected
2f50ea4dd2b4a90622d1ba9d9b68dd40f1941f3a913b5d449100055a21552bf4.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ