Setup Downloader[.]zip | Triage

Sharing

General

Target

Setup Downloader.zip
Size

4KB
MD5

704c156226894a4584e767ea51c35ddd
SHA1

648bf8b817cf412f626dbf100e2e2c2a19b16013
SHA256

6cac585ae54b57f55733ac48d8589591b1c39c2275a4ad3b340cf61068f0ecb8
SHA512

23f460871b7a1ba4e809d7ceb310d181f010408457451c8bcd6561b0f193c17725d3dac0d4721dae39a2003c89c4943b7db48c18bdb8f91ff6208dd086101c12
SSDEEP

96:aSfd8hcsTZKP1qiJn46vGM5sXkMVijOJ5hTmT+31+1J1p1nWWjRnN:Dfdy8qg46vGMekeijOJrFQV0WjRnN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Setup.exe

Files

Setup Downloader.zip
.zip
Setup.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ