a9910b498955f78f8ea5bfe6dc38c551[.]zip | Triage

Sharing

General

Target

a9910b498955f78f8ea5bfe6dc38c551.zip
Size

1.5MB
MD5

4205e2d727ed14555d468d5b07b161e2
SHA1

34b503c425da789165643d03c5e9f6bc5f537e7c
SHA256

8a1993fdf7549299a9dbe2531dc1dc32e5f46e30a5da9426144129de108fc792
SHA512

f3b4ae547dbd1383cf2687dbe8af522422ccb319f80a36d8a24f90c928cbac38ca1daea713e68bfd8200208ed601c6b4407f78de814a2b9616d558b9a76919bd
SSDEEP

12288:b+g+lN4qQOnqZEOBhoi9Fe5plt4Q0I9xSwToV/Grj1:b+z4qQPZlhQT0Q9xSwTG05

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/a9910b498955f78f8ea5bfe6dc38c551

Files

a9910b498955f78f8ea5bfe6dc38c551.zip
.zip
a9910b498955f78f8ea5bfe6dc38c551
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 508KB - Virtual size: 507KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ