361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c[.]zip

General

Target

361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c.zip
Size

1.2MB
MD5

d3fefc0642527908d1bbb294c988cdf9
SHA1

0fb63010b165aea76f0e804bc9770fdc09913879
SHA256

6afe66dbf42c2bbcf05dc9075f49a9fd1c858a974479199b275bd42cfb29381c
SHA512

016a6412ebd33d80732d1c5b9120480e8e575380559bd8bf9705e8dccabfe30448a167b7a0cdab95696324edc46aa24cd5ea252304fc11c9fabf2d100cf970d9
SSDEEP

24576:Umga5oLsIEuCkrbWuO7OCBUnBf+/LbPox5zZua+XR:NgdsIjFrbWuO7OPnA/Lez8agR

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c.exe

361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c.zip
.zip

Password: infected
361b53f4b3e887b963bd607d994f9f42344b39e871b1142c8e56ff7182e4c96c.exe
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 85KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 115KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 175KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 908KB - Virtual size: 912KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE