5d13ad67ad5e9f52dd1dedcc5a987ee0afdf7f1a11cdfa0a4e037068a8983c46[.]zip

General

Target

5d13ad67ad5e9f52dd1dedcc5a987ee0afdf7f1a11cdfa0a4e037068a8983c46.zip
Size

1.2MB
MD5

73ee42e277498dd2c6f03a69bd21845d
SHA1

8b76173dbcfe80412162c29dabd5c779f1872c1a
SHA256

9ee66e14e7ebfb59310ae22837a6ca6b17916518aed018355b82abba19cdae06
SHA512

e6b1bfd357454c9299ed7f2bbfe17d60a99b4e076183ea7d424103939cb86b0646519e812e650d14ea596e9cc02808b899f600d8ffa3ac7d1fb5d738021fe005
SSDEEP

24576:GhawjtSRNa0llk5LScENaLiqZhUq40CxF7AaMjQ3bI4hpxNt3iN5:GR64+lkppEN8zNxCx5A9jwxNtM

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/LiveUpdateTool_20210325.exe

5d13ad67ad5e9f52dd1dedcc5a987ee0afdf7f1a11cdfa0a4e037068a8983c46.zip
.zip

Password: infected
LiveUpdateTool_20210325.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ