4b38f38cf1c72fbb8f9bf581744e835db7871e8b8f09efdd2824628686d2d4f0

General

Target

4b38f38cf1c72fbb8f9bf581744e835db7871e8b8f09efdd2824628686d2d4f0
Size

610KB
MD5

2f42a6fb13f45e4139df6e85874d577f
SHA1

c86df23bf791c9045113a39dfe3609568a9ae190
SHA256

4b38f38cf1c72fbb8f9bf581744e835db7871e8b8f09efdd2824628686d2d4f0
SHA512

546322ac57b6b73bbff704734295ed990b53900013130f7b66a3157c56e8f37a6a3dfd85f49b4c89cd99516fab6bc260c7418dcf120858562ade84e953029a4b
SSDEEP

12288:eh5RSUvtcLU0sIC5hBEyuVvn+x3yXwQ/ylVvdc3y2InJXBz2zM:e/PvawTICHhuVvm3P7lVvwEnJXxWM

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/968b35df94059f162a58a881cfcd63c0f2b2daf904f9599c48fade1f4fde8605.exe

4b38f38cf1c72fbb8f9bf581744e835db7871e8b8f09efdd2824628686d2d4f0
.zip

Password: infected
968b35df94059f162a58a881cfcd63c0f2b2daf904f9599c48fade1f4fde8605.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ