2-FormBook[.]5-77e14caae3daf05c1f5a6a3d10e4936cc58944d6ae9ec6943b1be6d995e94b5c[.]zip

General

Target

2-FormBook.5-77e14caae3daf05c1f5a6a3d10e4936cc58944d6ae9ec6943b1be6d995e94b5c.zip
Size

257KB
MD5

0c5834cfe9c8b475ca6a177da7ea1eb4
SHA1

0d12d87014ebbce199f9ff3e1b660fc7d6897506
SHA256

911631a56ffbdb73e17198f305e1410fe3e1e79aedfa99eb861d2221199f4b78
SHA512

fbe5f86c47b4e48bfbea2708180c62fddadde8c60cd24156f4e75ecb3e1ad05dcdc6301c51fddafbfc78e600b8e5c66ff3afee9507ea9b10732b7241ae1eb7ac
SSDEEP

6144:IRWkjNQuXqcyI4zqMSlY8pNWuOE6Q+N/jjkkWmPRUNpz:IRxOuXqcyIcqMS3pNWuvtG/ZJUfz

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/77e14caae3daf05c1f5a6a3d10e4936cc58944d6ae9ec6943b1be6d995e94b5c.exe

2-FormBook.5-77e14caae3daf05c1f5a6a3d10e4936cc58944d6ae9ec6943b1be6d995e94b5c.zip
.zip

Password: infected
77e14caae3daf05c1f5a6a3d10e4936cc58944d6ae9ec6943b1be6d995e94b5c.exe
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ