7100bb7fc814108026962a1d54eefb18296337e8531c63b2c6c6b6dd4c6df720[.]zip

General

Target

7100bb7fc814108026962a1d54eefb18296337e8531c63b2c6c6b6dd4c6df720.zip
Size

151KB
MD5

4586146bdc23566591577fc5191fe339
SHA1

b40917e3d97494ac3f9d70cbf42eafe80bab8679
SHA256

628e017814ac5aa2d306f11fd3ee20c442da3b32c528e945105d10cdf6881468
SHA512

526a138a4407585bd64c6075d33d13c71abdc9e57f3732adeaa969ece92a8529bb542072dee1cc765a6aa5657b3d10d599201af45de9553443a231f95a6e65a0
SSDEEP

3072:lTW12bQvHlh+8NLhRMvGD8XfxhHLv1ZXAsFBA75AQmby2EcCMG9VofGlel9J8VCJ:w1jH3+8NDMeo/fXAiG753CVEcYlw3r

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/7100bb7fc814108026962a1d54eefb18296337e8531c63b2c6c6b6dd4c6df720

7100bb7fc814108026962a1d54eefb18296337e8531c63b2c6c6b6dd4c6df720.zip
.zip

Password: threatbook
7100bb7fc814108026962a1d54eefb18296337e8531c63b2c6c6b6dd4c6df720
.exe windows:4 windows x86 arch:x86

Password: threatbook

ad8caef506b03411975dea72b91ebde8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
GetFullPathNameW
RaiseException
SetStdHandle
GetStartupInfoA
SetConsoleCP
GetACP
WaitForMultipleObjects
VirtualProtect
GetOEMCP
FormatMessageA
GetCurrentProcess
ExitProcess
GetModuleHandleA
TerminateProcess
HeapAlloc
MoveFileExW
LeaveCriticalSection
GetStdHandle

rpcrt4

RpcStringFreeA

user32

GetDC

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 119KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ