Yours.pdb
Resubmissions
21/02/2024, 12:14
240221-pem49sfe67 5Static task
static1
1 signatures
General
-
Target
9479886827900d0980e785cf43018d78e3f71ccfd1a5f85ed3e74c8354708479.zip
-
Size
286KB
-
MD5
bc7fd9b5ea6693a604e083761f2e3eb3
-
SHA1
4f880907ebfa76eab0080d385e570106ab5d2a4e
-
SHA256
fa4565790e4da22130b2a7d124cdf9a72c8722521266a20ad9172f4cdb1b92f1
-
SHA512
ced762d9b2355ed9f26fe3255a926688f9f7878d5cab85a188d20425d0ead34ef1cc89275c6b289811096c8443fb27905ca7c8f5adc9c1d10541a326253325c1
-
SSDEEP
6144:3ZsM2RCWAtspp8FXyBDmTAYbUOFGbvTDqvCnqMOWfi6iIOkkLMgmU9S:pstAysFX+KsgDFsqOd+0aS
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/9479886827900d0980e785cf43018d78e3f71ccfd1a5f85ed3e74c8354708479.exe
Files
-
9479886827900d0980e785cf43018d78e3f71ccfd1a5f85ed3e74c8354708479.zip.zip
Password: infected
-
9479886827900d0980e785cf43018d78e3f71ccfd1a5f85ed3e74c8354708479.exe.exe windows:4 windows x86 arch:x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 294KB - Virtual size: 294KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ