4668db8c859e8278a7f16fe33e60188448f70ed829bab61690e5e35122935b4b

General

Target

4668db8c859e8278a7f16fe33e60188448f70ed829bab61690e5e35122935b4b
Size

517KB
MD5

f5d7109bb0dad876a8df26b54ce8e520
SHA1

0201bb895c9e6405d98b78a824893aa5d17afd76
SHA256

4668db8c859e8278a7f16fe33e60188448f70ed829bab61690e5e35122935b4b
SHA512

baf778d3481053388328b4db05e8217c0e45ade52bb5b0f6374cd8977b88cb717eb20bd0193740ae889b912dae985d3928d643b003989b9c3b49cf5815997e7c
SSDEEP

12288:tAAwXoYr1Ev9geFq7vmczFjRsAQqT5KMXSJD8fbofRUg2:tArXoYr+Fgb3zFnRT4MiJkbofN2

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/6682d4c801b131d5de5810898709e48f858f7204de3fbe9eedd08d7649202a4b.exe

4668db8c859e8278a7f16fe33e60188448f70ed829bab61690e5e35122935b4b
.zip

Password: infected
6682d4c801b131d5de5810898709e48f858f7204de3fbe9eedd08d7649202a4b.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

vKWb.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 853KB - Virtual size: 852KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ