2229895ce02279fa69b8af6459d5088efdedf87b53e0c7ec6e84990f4fdb9a17[.]zip

General

Target

2229895ce02279fa69b8af6459d5088efdedf87b53e0c7ec6e84990f4fdb9a17.zip
Size

473KB
MD5

4e2aaf1ca65e7c1ab8807e5a84b3fc4f
SHA1

4a9bbc896951d06dc25d9305ca8e8c33b35938fe
SHA256

2ca3c1a78c4e9a1c3138bc0437709e200974910849a86b69ed942070dc027868
SHA512

f78783cc1fb54b153c1e0c077b54352dce2e160a40b0a8e6fac190937170631162f25d0587a5654746a7fc95f08d2e248cd464d0bab3895a18daaceb600294e6
SSDEEP

12288:Q7v/+opUjnU3cPHGbaRP/CaeNNNxzEWMYsrJqqMTF:QDWmr3cPHGbqCvxx4pYqQ

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/PO23444321.exe

2229895ce02279fa69b8af6459d5088efdedf87b53e0c7ec6e84990f4fdb9a17.zip
.zip

Password: infected
2229895ce02279fa69b8af6459d5088efdedf87b53e0c7ec6e84990f4fdb9a17.tar
.tar
PO23444321.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 474KB - Virtual size: 474KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ