136732dbe261fb6240c27d0f1c7f020e073da956dfefa92c3e58571ba8921e58

General

Target

136732dbe261fb6240c27d0f1c7f020e073da956dfefa92c3e58571ba8921e58
Size

626KB
MD5

d37e15dde2cb36bfe32a5e30db89d8ff
SHA1

7fdea2cf3323e303ecbfa5cd912278b1168d878c
SHA256

136732dbe261fb6240c27d0f1c7f020e073da956dfefa92c3e58571ba8921e58
SHA512

b2d384d090351edfca982f9f68ab94dca5ea7aa3ea85bc736c086d83d06742ae2f200a9c979b2525e3ba8725b91d5c1f0c6dd118294a3b9f6146ba41a6abf611
SSDEEP

12288:5RMVArdCQE5NBmWkS2OlQT0/qIL1kteQ2Gjp3hIbr+FB00gTCGpX:5qAxCnvm5OWCqIL1b+jOr+FBDgTr

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/784233bc80ea7857c39dbcd9c929a626093fced8c54224e742c4d0e1d128e80d.exe

136732dbe261fb6240c27d0f1c7f020e073da956dfefa92c3e58571ba8921e58
.zip

Password: infected
784233bc80ea7857c39dbcd9c929a626093fced8c54224e742c4d0e1d128e80d.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 629KB - Virtual size: 628KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ