Static task
static1
General
-
Target
ZM 1.4.9.exe
-
Size
353KB
-
MD5
2d4b798194da74f9973ad996e7e45670
-
SHA1
cf278e30db39739a7cf8c99824f2221ce4433efc
-
SHA256
bad053b60949c6a109f1c91a2a525ba2a3d5ac047f0a04509b9989c43215c94a
-
SHA512
e09dfc8d4e14650a1243463f29e132388eedc6d00a0bdaddd1a12cd3d89df11252f0cac98723eb5a25cf2493f6dd0844e958fa770d3cea62dcfae6292d0f5bda
-
SSDEEP
3072:Ivlzjn2N4vWOZ1rNPxtP955oTKi/0sVJkzFlP+zoIep/qcjR+R9gi0h1ziIkM:IvlzjnnXPx76JLolp/q44R9J0HT
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ZM 1.4.9.exe
Files
-
ZM 1.4.9.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 282KB - Virtual size: 281KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 70KB - Virtual size: 70KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ