16327406181[.]zip

Resubmissions

29/03/2024, 06:29

240329-g9atescc65 10

29/03/2024, 06:17

240329-g15x7sbd8t 10

Sharing

Copy URL Twitter E-mail

General

Target

16327406181.zip
Size

16.2MB
MD5

2ef97a5fcff8dfd9d855fc088163dc33
SHA1

7aa3631ebef76247b382f8ac89e4bb91b28a1bbb
SHA256

5db8d39760a168199e63676946e67f5271d4fc480b76b7d75cab546962e9ff41
SHA512

973286638e804d9e244c356ff8f9e3aa85cfb2f2cbc50f8376bccd38c7d0267fac9d03983fa2106095432b1091fe21bc5251325177b3ca9ed6318b88d7be65c7
SSDEEP

393216:4ZpIbTRIDzxPQGSitCAXr0LHyykh/jwF/zP:4ZpIbTas257D7mP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/3bdfcff0b1e7e9076aaf1ee8754993dbc44ed8717782adcac144ffb42840d793

Files

16327406181.zip
.zip

Password: infected
3bdfcff0b1e7e9076aaf1ee8754993dbc44ed8717782adcac144ffb42840d793
.exe windows:6 windows x64 arch:x64

3fac356340f08f787f93cbf317f090cd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

__C_specific_handler

kernel32

DeleteCriticalSection

Sections

.text
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Mf4
Size: - Virtual size: 7.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.;}Y
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.C],
Size: 17.3MB - Virtual size: 17.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

Password: infected

3fac356340f08f787f93cbf317f090cd

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

Sections

.text Size: - Virtual size: 40KB

.rdata Size: - Virtual size: 13KB

.data Size: - Virtual size: 5.0MB

.pdata Size: - Virtual size: 396B

.00cfg Size: - Virtual size: 16B

.tls Size: - Virtual size: 16B

.Mf4 Size: - Virtual size: 7.9MB

.;}Y Size: 512B - Virtual size: 88B

.C], Size: 17.3MB - Virtual size: 17.3MB

.rsrc Size: 84KB - Virtual size: 84KB

.reloc Size: 512B - Virtual size: 288B

.text
Size: - Virtual size: 40KB

.rdata
Size: - Virtual size: 13KB

.data
Size: - Virtual size: 5.0MB

.pdata
Size: - Virtual size: 396B

.00cfg
Size: - Virtual size: 16B

.tls
Size: - Virtual size: 16B

.Mf4
Size: - Virtual size: 7.9MB

.;}Y
Size: 512B - Virtual size: 88B

.C],
Size: 17.3MB - Virtual size: 17.3MB

.rsrc
Size: 84KB - Virtual size: 84KB

.reloc
Size: 512B - Virtual size: 288B